CVE-2000-1180
published 2001-01-09CVE-2000-1180: Buffer overflow in cmctl program in Oracle 8.1.5 Connection Manager Control allows local users to gain privileges via a long command line argument.
PriorityP419medium4.6CVSS 2.0
AVLACLAuNCPIPAP
EXPLOIT
EPSS
2.26%
80.8th percentile
Buffer overflow in cmctl program in Oracle 8.1.5 Connection Manager Control allows local users to gain privileges via a long command line argument.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| oracle | oracle8i | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-xmgq-gq24-73mw: Buffer overflow in cmctl program in Oracle 8
ghsa_unreviewed·2022-04-30
CVE-2000-1180 [MEDIUM] GHSA-xmgq-gq24-73mw: Buffer overflow in cmctl program in Oracle 8
Buffer overflow in cmctl program in Oracle 8.1.5 Connection Manager Control allows local users to gain privileges via a long command line argument.
Juniper
CVE-2008-1180: Cross-site scripting (XSS) vulnerability in dana-na/auth/rdremediate.cgi in Juniper Networks Secure Access 2000 5.5 R1 build 11711 allows remote attac
vendor_juniper·2008-03-06·CVSS 4.3
CVE-2008-1180 [MEDIUM] CWE-79 CVE-2008-1180: Cross-site scripting (XSS) vulnerability in dana-na/auth/rdremediate.cgi in Juniper Networks Secure Access 2000 5.5 R1 build 11711 allows remote attac
CVE-2008-1180: Cross-site scripting (XSS) vulnerability in dana-na/auth/rdremediate.cgi in Juniper Networks Secure Access 2000 5.5 R1 build 11711 allows remote attackers to inject arbitrary web script or HTML via the delivery_mode parameter.
No detection rules found.
Exploit-DB
Juniper Networks Secure Access 2000 - 'rdremediate.cgi' Cross-Site Scripting
exploitdb·2008-02-28
CVE-2008-1180 Juniper Networks Secure Access 2000 - 'rdremediate.cgi' Cross-Site Scripting
Juniper Networks Secure Access 2000 - 'rdremediate.cgi' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/28034/info
Juniper Networks Secure Access 2000 is prone to a cross-site scripting vulnerability because it fails to adequately sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
Juniper Networks Secure Access 2000 5.5R1 Build 11711 is vulnerable; other versions may also be affected.
https://www.example.com/dana-na/auth/rdremediate.cgi?delivery_mode=alert('Can%20Cross%20Site%20Attack')&action=tryagain&signinId=url_default
COMPLETE HTTP REQUEST:
Exploit-DB
Oracle 8.x - cmctl Buffer Overflow
exploitdb·2000-11-20
CVE-2000-1180 Oracle 8.x - cmctl Buffer Overflow
Oracle 8.x - cmctl Buffer Overflow
---
/*
source: https://www.securityfocus.com/bid/1968/info
cmctl is the Connection Control Manager, part of the Oracle 8i installation. A vulnerability exists that can allow elevation of privileges.
The problem occurs in the way cmctl handles the user-supplied command line arguments. The string representing argv[1] (the first user-supplied commandline argument) is copied into a buffer of predefined length without being checked to ensure that its length does not exceed the size of the destination buffer. As a result, the excessive data that is written to the buffer will write past its boundaries and overwrite other values on the stack (such as the return address).
This can lead to the user executing supplied shellcode with the effective privileges of
No writeups or analysis indexed.
2001-01-09
Published