CVE-2000-0976
published 2000-12-19CVE-2000-0976: Buffer overflow in xlib in XFree 3.3.x possibly allows local users to execute arbitrary commands via a long DISPLAY environment variable or a -display command…
PriorityP417medium4.6CVSS 2.0
AVLACLAuNCPIPAP
EXPLOIT
EPSS
0.97%
57.5th percentile
Buffer overflow in xlib in XFree 3.3.x possibly allows local users to execute arbitrary commands via a long DISPLAY environment variable or a -display command line parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| xfree86_project | xlib | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft Internet Explorer 4/5/6 - XML Datasource Applet File Disclosure
exploitdb·2002-08-17
CVE-2002-0976 Microsoft Internet Explorer 4/5/6 - XML Datasource Applet File Disclosure
Microsoft Internet Explorer 4/5/6 - XML Datasource Applet File Disclosure
---
source: https://www.securityfocus.com/bid/5490/info
A problem in Microsoft Internet Explorer could lead to the disclosure of sensitive information.
Due to the design of the datasource applet, it may be possible for a user to view the contents of local files via a remote page. By building a custom-crafted page that specifies the code base as the local system, it would be possible to display the contents of known local files.
]>
&contents;
setTimeout("showIt()",2000);
function showIt() {
var jelmer = xmldso.getDocument();
alert(jelmer.Text);
}
Exploit-DB
XFree86 3.3.5/3.3.6 - Xlib Display Buffer Overflow
exploitdb·2000-10-12
CVE-2000-0976 XFree86 3.3.5/3.3.6 - Xlib Display Buffer Overflow
XFree86 3.3.5/3.3.6 - Xlib Display Buffer Overflow
---
source: https://www.securityfocus.com/bid/1805/info
A vulnerability exists in xlib, the C language interface to the X Window System protocol.
When applications linked to the xlib library are run, user-supplied values for the DISPLAY environment variable (and the command-line argument -display) are stored in buffers of predefined length. It is not verified that the amount data is within the predefined size limits before it is copied onto the stack during function calls.
Consequently it is possible for users to overwrite stack variables such as the calling function's return address with arbitrary values that can alter the program's flow of execution.
While this vulnerability permits only numeric characters to be written to the stac
No writeups or analysis indexed.
ftp://patches.sgi.com/support/free/security/advisories/20020502-01-Ihttp://archives.neohapsis.com/archives/bugtraq/2000-10/0211.htmlhttp://www.iss.net/security_center/static/5751.phphttp://www.securityfocus.com/bid/1805ftp://patches.sgi.com/support/free/security/advisories/20020502-01-Ihttp://archives.neohapsis.com/archives/bugtraq/2000-10/0211.htmlhttp://www.iss.net/security_center/static/5751.phphttp://www.securityfocus.com/bid/1805
2000-12-19
Published