CVE-2000-0018

wmmon <FreeBSD - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0018. PoCs published by Steve Reid.

AI-analyzed exploit summary This exploit leverages a privilege escalation vulnerability in WMMon, where SUID/SGID privileges are not dropped before executing user-defined commands. By configuring WMMon to launch a shell via a left-click action, an attacker can gain elevated privileges (e.g., kmem group).

Description

wmmon in FreeBSD allows local users to gain privileges via the .wmmonrc configuration file.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Steve Reid · textlocalfreebsd
https://www.exploit-db.com/exploits/19685

This exploit leverages a privilege escalation vulnerability in WMMon, where SUID/SGID privileges are not dropped before executing user-defined commands. By configuring WMMon to launch a shell via a left-click action, an attacker can gain elevated privileges (e.g., kmem group).

Classification
Working Poc 100%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: WMMon (versions with SUID/SGID misconfiguration)
No auth needed
Prerequisites: WMMon installed with SUID/SGID privileges · User access to the system
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/885
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/1169

Scores

EPSS 0.0069
EPSS Percentile 48.3%

Details

Status published
Products (1)
windowmaker/wmmon 1.0b2
Published Dec 22, 1999
Tracked Since Feb 18, 2026