Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2000-0987

5 documents4 sources

Severity

4.6MEDIUM

EPSS

0.4%

top 40.66%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Timeline

PublishedDec 19

Latest updateApr 30

Description

Buffer overflow in oidldapd in Oracle 8.1.6 allow local users to gain privileges via a long "connect" command line parameter.

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

GHSA

GHSA-f5m7-2587-87mp: Buffer overflow in oidldapd in Oracle 8↗2022-04-30

▶

CVEList

CVE-2000-0987: Buffer overflow in oidldapd in Oracle 8↗2000-11-29

▶

Exploit-DB

Oracle (oidldapd connect) - Local Command Line Overflow↗2000-11-16

▶

Exploit-DB

Oracle Internet Directory 2.0.6 - oidldap↗2000-10-18

▶