CVE-2000-0026

Windowmaker Wmmon - Buffer Overflow

Title source: rule

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0026. PoCs published by Brock Tellier.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the i2odialogd daemon on UnixWare 7.1. It sends a maliciously crafted base64-encoded payload to overwrite the return address and execute arbitrary shellcode, resulting in remote code execution as root.

Description

Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Brock Tellier · cremotesco

https://www.exploit-db.com/exploits/19680

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in the i2odialogd daemon on UnixWare 7.1. It sends a maliciously crafted base64-encoded payload to overwrite the return address and execute arbitrary shellcode, resulting in remote code execution as root.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: SCO UnixWare 7.1 i2odialogd

No auth needed

Prerequisites: Network access to the target system · i2odialogd service running on port 360

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/6310

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/876

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=94606167110764&w=2

Scores

EPSS 0.0459

EPSS Percentile 90.4%

Details

Status published

Products (2)

sco/unixware 7.1

windowmaker/wmmon 1.0b2

Published Dec 21, 1999

Tracked Since Feb 18, 2026