CVE-2000-0223

wmcdplay - Buffer Overflow via Long Parameter

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2000-0223. PoCs published by Larry W. Cashdolla, Krahmer.

AI-analyzed exploit summary The writeup describes a buffer overflow vulnerability in wmcdplay, a CD player utility often setuid root, allowing local privilege escalation to root. The vulnerability stems from lack of bounds checking on an argument passed to the program.

Description

Buffer overflow in the wmcdplay CD player program for the WindowMaker desktop allows local users to gain root privileges via a long parameter.

Exploits (2)

exploitdb WRITEUP VERIFIED

by Larry W. Cashdolla · textlocallinux

https://www.exploit-db.com/exploits/19803

View Code ZIP pw:eip

The writeup describes a buffer overflow vulnerability in wmcdplay, a CD player utility often setuid root, allowing local privilege escalation to root. The vulnerability stems from lack of bounds checking on an argument passed to the program.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Theoretical

Target: wmcdplay (version not specified)

No auth needed

Prerequisites: Local access to the system · wmcdplay installed and setuid root

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Krahmer · clocallinux

https://www.exploit-db.com/exploits/19802

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in wmcdplay, a CD player utility often installed setuid root. It leverages a lack of bounds checking on an argument to execute arbitrary shellcode, elevating privileges to root.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: wmcdplay (version not specified)

No auth needed

Prerequisites: Local access to the system · wmcdplay installed and setuid root

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2000-03/0107.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/1047

Scores

EPSS 0.0094

EPSS Percentile 56.3%

Details

Status published

Products (1)

sam_hawker/wmcdplay 1.0_beta2

Published Mar 10, 2000

Tracked Since Feb 18, 2026