CVE-2000-0035

Majordomo < 1.94.4 - Local Privilege Escalation via Resend Command Shell Metacharacters

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0035. PoCs published by Brock Tellier.

AI-analyzed exploit summary This exploit leverages a command injection vulnerability in the majordomo 'resend' binary, which is called by a setuid root wrapper. By passing a malicious argument starting with '@|', arbitrary commands can be executed with elevated privileges.

Description

resend command in Majordomo allows local users to gain privileges via shell metacharacters.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Brock Tellier · textlocallinux

https://www.exploit-db.com/exploits/19698

View Code ZIP pw:eip

This exploit leverages a command injection vulnerability in the majordomo 'resend' binary, which is called by a setuid root wrapper. By passing a malicious argument starting with '@|', arbitrary commands can be executed with elevated privileges.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: majordomo (version not specified)

No auth needed

Prerequisites: Access to the system with the vulnerable majordomo installation · The 'resend' binary must be setuid or called by a setuid wrapper

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=94780294009285&w=2

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/902

Scores

EPSS 0.0059

EPSS Percentile 43.7%

Details

Status published

Products (1)

great_circle_associates/majordomo < 1.94.4

Published Dec 28, 1999

Tracked Since Feb 18, 2026