CVE-2000-0693
published 2000-10-20CVE-2000-0693: pgxconfig in the Raptor GFX configuration tool uses a relative path name for a system call to the "cp" program, which allows local users to execute arbitrary…
PriorityP420high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
1.02%
59.0th percentile
pgxconfig in the Raptor GFX configuration tool uses a relative path name for a system call to the "cp" program, which allows local users to execute arbitrary commands by modifying their path to point to an alternate "cp" program.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| tech-source | raptor_gfx_pgx32 | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft Windows XP/2000/NT 4.0 - Help Facility ActiveX Control Buffer Overflow
exploitdb·2002-10-07
CVE-2002-0693 Microsoft Windows XP/2000/NT 4.0 - Help Facility ActiveX Control Buffer Overflow
Microsoft Windows XP/2000/NT 4.0 - Help Facility ActiveX Control Buffer Overflow
---
// source: https://www.securityfocus.com/bid/5874/info
The ActiveX control that provides much of the functionality for the Windows Help Center contains an unchecked buffer. Successful exploitation could result in execution of arbitrary code in the security context of the current user.
/*
By [email protected] 10.07.2002
prove of concept code of Windows Help buffer overflow.
Bug discovered by
For tech detail see "Thor Larholm security advisory TL#004".
To Use:
cl ex.c
Run as:
ex > ex.htm
start ex.htm (be sure to set iexplore as your default htm viewer.)
You will get a cmd shell.
Tested on IE 5.5, IE5.5 SP2, IE 6.0.
other version untested.
*/
#include
#include
char shellcode[] = "\x55\x8B\xEC\x33\
Exploit-DB
Tech-Source Raptor GFX PGX32 2.3.1 - Config Tool
exploitdb·2000-08-02
CVE-2000-0695 Tech-Source Raptor GFX PGX32 2.3.1 - Config Tool
Tech-Source Raptor GFX PGX32 2.3.1 - Config Tool
---
source: https://www.securityfocus.com/bid/1563/info
Raptor GFX cards are designed to handle 24-bit true color applications such as Netscape, seismic, geographical information systems (GIS), satellite imaging, pre-press imaging and general desktop use. They can also be used for high resolution 8-bit applications such as Insignia's SoftWindows, medical imaging and many legacy applications.
Certain versions of the software shipped to configure the Raptor GFX cards are vulnerable to an PATH environment variable attack due to insecure code within pgxconfig the main configuration utility. In particular the pgxconfig uses an insecure system call (system(3s). This function effectively executes binaries resident on the system from within the
No writeups or analysis indexed.
2000-10-20
Published