CVE-2000-0704
published 2000-10-20CVE-2000-0704: Buffer overflow in SGI Omron WorldView Wnn allows remote attackers to execute arbitrary commands via long JS_OPEN, JS_MKDIR, or JS_FILE_INFO commands.
PriorityP340critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
13.10%
95.9th percentile
Buffer overflow in SGI Omron WorldView Wnn allows remote attackers to execute arbitrary commands via long JS_OPEN, JS_MKDIR, or JS_FILE_INFO commands.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| freewnn | freewnn | — | — |
| freewnn | freewnn | — | — |
| freewnn | freewnn | — | — |
| chrome_chrome | — | — | |
| omron | worldview | — | — |
| wnn | wnn4 | — | — |
| wnn | wnn4 | — | — |
| wnn | wnn4 | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-m283-5933-pjcq: Buffer overflow in SGI Omron WorldView Wnn allows remote attackers to execute arbitrary commands via long JS_OPEN, JS_MKDIR, or JS_FILE_INFO commands
ghsa_unreviewed·2022-05-03
CVE-2000-0704 [HIGH] GHSA-m283-5933-pjcq: Buffer overflow in SGI Omron WorldView Wnn allows remote attackers to execute arbitrary commands via long JS_OPEN, JS_MKDIR, or JS_FILE_INFO commands
Buffer overflow in SGI Omron WorldView Wnn allows remote attackers to execute arbitrary commands via long JS_OPEN, JS_MKDIR, or JS_FILE_INFO commands.
Chrome
Stable Channel Update for Desktop: CVE-2023-0702
vendor_chrome·2023-02-07·CVSS 8.8
CVE-2023-0702 [MEDIUM] Stable Channel Update for Desktop: CVE-2023-0702
Stable Channel Update for Desktop
CVE-2023-0702: Type Confusion in Data Transfer. Reported by Sri on 2022-04-14 [$1000][ 1405574 ] Medium CVE-2023-0703: Type Confusion in DevTools
Reported by raven at KunLun lab on 2023-01-07 [$2000][ 1385982 ] Low CVE-2023-0704: Insufficient policy enforcement in DevTools
Severity: medium
No detection rules found.
Exploit-DB
1C: Arcadia Internet Store 1.0 - Path Disclosure
exploitdb·2001-06-21
CVE-2001-0704 1C: Arcadia Internet Store 1.0 - Path Disclosure
1C: Arcadia Internet Store 1.0 - Path Disclosure
---
source: https://www.securityfocus.com/bid/2904/info
1C: Arcadia Internet Store is a online shopping utility for Microsoft Windows NT/2000 that is fully integratable with 1C: Enterprise, another popular Russian web-commerce utility.
One of the components of this package, 'tradecli.dll', allows users to specify a template file, the contents of which will be output.
If the requested file does not exist, the error message will contain the absolute path of the application on the webserver.
This information may assist in further attacks.
Exploit: http://host/scripts/tradecli.dll?template=nonexistfile
Exploit-DB
WorldView 6.5/Wnn4 4.2 - Asian Language Server Remote Buffer Overflow
exploitdb·2000-03-08
CVE-2000-0704 WorldView 6.5/Wnn4 4.2 - Asian Language Server Remote Buffer Overflow
WorldView 6.5/Wnn4 4.2 - Asian Language Server Remote Buffer Overflow
---
// source: https://www.securityfocus.com/bid/1603/info
A remote buffer overflow exists in the Asian language servers portion of a number of different implementations of Wnn. It has been reported that only systems that have WorldView Japanese, Korean, and Chinese installed are vulnerable to this issue. Wnn is a Kana-Kanji translation system, most commonly used for foreign language support in Unix systems.
An overflow exists when the server receives a long string with a Wnn command, such as JS_OPEN, JS_MKDIR or JS_FILE_INFO included. By creating a buffer containing machine executable code, it is possible to cause a remote system running the jserver daemon to execute arbitrary commands as the user the daemon is runn
No writeups or analysis indexed.
ftp://sgigate.sgi.com/security/20000803-01-Ahttp://www.osvdb.org/11080http://www.securityfocus.com/bid/1603https://exchange.xforce.ibmcloud.com/vulnerabilities/5163ftp://sgigate.sgi.com/security/20000803-01-Ahttp://www.osvdb.org/11080http://www.securityfocus.com/bid/1603https://exchange.xforce.ibmcloud.com/vulnerabilities/5163
2000-10-20
Published