CVE-1999-0823

FreeBSD - Buffer Overflow via xmindpath -f Argument

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0823. PoCs published by Brock Tellier.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in xmindpath on FreeBSD 3.3 to gain uucp privileges. It uses shellcode and environment variable manipulation to execute arbitrary code.

Description

Buffer overflow in FreeBSD xmindpath allows local users to gain privileges via -f argument.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Brock Tellier · clocalfreebsd

https://www.exploit-db.com/exploits/19652

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in xmindpath on FreeBSD 3.3 to gain uucp privileges. It uses shellcode and environment variable manipulation to execute arbitrary code.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: xmindpath on FreeBSD 3.3

No auth needed

Prerequisites: Local access to the target system · Presence of vulnerable xmindpath binary

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/1150

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/839

Scores

EPSS 0.0060

EPSS Percentile 43.8%

Details

Status published

Products (1)

freebsd/freebsd 3.3

Published Dec 01, 1999

Tracked Since Feb 18, 2026