Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2000-0794 β€” Improper Restriction of Operations within the Bounds of a Memory Buffer in Irix

4 documents4 sources
Severity
7.2HIGHNVD
EPSS
0.5%
top 35.27%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
SGI Irix
Timeline
PublishedOct 20
Latest updateApr 30

Description

Buffer overflow in IRIX libgl.so library allows local users to gain root privileges via a long HOME variable to programs such as (1) gmemusage and (2) gr_osview.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

β–ΆNVDsgi/irix6.2

πŸ”΄Vulnerability Details

2
GHSA
GHSA-g2cj-p4q5-49m4: Buffer overflow in IRIX libgl↗2022-04-30
β–Ά
CVEList
CVE-2000-0794: Buffer overflow in IRIX libgl↗2000-09-21
β–Ά

πŸ’₯Exploits & PoCs

1
Exploit-DB
SGI IRIX 6.2 - 'libgl.so' Local Buffer Overflow↗1997-09-01
β–Ά
CVE-2000-0794 β€” SGI Irix vulnerability | cvebase