CVE-2000-0545
published 2000-08-08CVE-2000-0545: Buffer overflow in mailx mail command (aka Mail) on Linux systems allows local users to gain privileges via a long -c (carbon copy) parameter.
PriorityP415medium4.6CVSS 2.0
AVLACLAuNCPIPAP
EXPLOIT
EPSS
0.89%
54.8th percentile
Buffer overflow in mailx mail command (aka Mail) on Linux systems allows local users to gain privileges via a long -c (carbon copy) parameter.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sgi | mailx | — | — |
| sgi | mailx | — | — |
| sgi | mailx | — | — |
| sgi | mailx | — | — |
| sgi | mailx | — | — |
| sgi | mailx | — | — |
| sgi | mailx | — | — |
| sgi | mailx | — | — |
| sgi | mailx | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
BSD 'mailx' 8.1.1-10 - Local Buffer Overflow (1)
exploitdb·2000-06-02
CVE-2000-0545 BSD 'mailx' 8.1.1-10 - Local Buffer Overflow (1)
BSD 'mailx' 8.1.1-10 - Local Buffer Overflow (1)
---
// source: https://www.securityfocus.com/bid/1305/info
Some Linux distributions ship with BSD mailx 8.1.1-10 (On Slackware 7.x it can be found as /usr/bin/Mail).
A vulnerability exists in the 'mail' program, part of the Berkeley mailx package. The 'mail' program contains a buffer overflow condition that is present when the -c parameter is used at the command line.
On systems where it is installed setgid, this vulnerability can be exploited to gain group 'mail' privileges.
/*
* mail-slak.c (C) 2000 Paulo Ribeiro
*
* Exploit for /usr/bin/Mail.
* Made specially for Slackware Linux 7.0.
* Based on mailx.c by funkySh.
*
* OBS.: Without fprintf(stderr) is not possible to print the message.
*
* USAGE:
* slack$ ./mail-slak
* type '.' and e
Exploit-DB
mailx 8.1.1-10 (BSD/Slackware) - Local Buffer Overflow (2)
exploitdb·1999-07-03
CVE-2000-0545 mailx 8.1.1-10 (BSD/Slackware) - Local Buffer Overflow (2)
mailx 8.1.1-10 (BSD/Slackware) - Local Buffer Overflow (2)
---
/*
source: https://www.securityfocus.com/bid/1305/info
Some Linux distributions ship with BSD mailx 8.1.1-10 (On Slackware 7.x it can be found as /usr/bin/Mail).
A vulnerability exists in the 'mail' program, part of the Berkeley mailx package. The 'mail' program contains a buffer overflow condition that is present when the -c parameter is used at the command line.
On systems where it is installed setgid, this vulnerability can be exploited to gain group 'mail' privileges.
*/
/*
* ..just couse it is no longer secret :>
*
* mailx sploit (linux x86)
* funkySh 3/07/99
* tested under Slackware 3.6,4.0,7.0 offset = 0-500
* Debian 2.0r2,2.1,2.2 offset = -7000 ..ugh ;]
*
* buffer overrun in cc-addr option, gives "mail" group priv
No writeups or analysis indexed.
2000-08-08
Published