CVE-2000-0230

halloween_linux - Buffer Overflow via HOME Environmental Variable

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2000-0230. PoCs published by S. Krahmer & Stealth, funkysh.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the 'imwheel' package via the HOME environment variable. It leverages a setuid root Perl script to execute arbitrary commands as root by overwriting the return address with shellcode.

Description

Buffer overflow in imwheel allows local users to gain root privileges via the imwheel-solo script and a long HOME environmental variable.

Exploits (2)

exploitdb WORKING POC VERIFIED
by S. Krahmer & Stealth · clocallinux
https://www.exploit-db.com/exploits/19812

This exploit targets a buffer overflow vulnerability in the 'imwheel' package via the HOME environment variable. It leverages a setuid root Perl script to execute arbitrary commands as root by overwriting the return address with shellcode.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: imwheel (specific version not specified)
No auth needed
Prerequisites: Presence of vulnerable 'imwheel' package · Setuid root Perl script 'imwheel-solo'
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by funkysh · clocallinux
https://www.exploit-db.com/exploits/19811

This exploit targets a buffer overflow vulnerability in the 'imwheel' package (CVE-2000-0230) by manipulating the HOME environment variable. It uses shellcode to spawn a root shell by exploiting a setuid root Perl script ('imwheel-solo').

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: imwheel (versions affected by CVE-2000-0230)
No auth needed
Prerequisites: Presence of vulnerable 'imwheel' package · Execution permissions on the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2000-03/0168.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1060
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2000-016.html

Scores

EPSS 0.0092
EPSS Percentile 55.5%

Details

Status published
Products (3)
halloween/halloween_linux 4.0
redhat/linux 6.1
redhat/linux 6.2
Published Mar 13, 2000
Tracked Since Feb 18, 2026