Exploitation Summary
EIP tracks 1 public exploit for CVE-2000-0229. PoCs published by Egmont Koblinger.
AI-analyzed exploit summary This exploit leverages a design flaw in the gpm-root program where setgid fails after setuid, allowing a local user with console access to create a setgid shell. The PoC involves configuring a .gpm-root file to execute commands that modify the permissions of /bin/sh to gain elevated privileges.
Description
gpm-root in the gpm package does not properly drop privileges, which allows local users to gain privileges by starting a utility from gpm-root.
Exploits (1)
This exploit leverages a design flaw in the gpm-root program where setgid fails after setuid, allowing a local user with console access to create a setgid shell. The PoC involves configuring a .gpm-root file to execute commands that modify the permissions of /bin/sh to gain elevated privileges.