CVE-2000-0337

Solaris 7 - Local Privilege Escalation via Xsun X Server -dev Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0337. PoCs published by DiGiT.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the Xsun X11 server on Solaris 7/8. It leverages a long argument to the -dev option to execute arbitrary shellcode with setgid root permissions, potentially escalating to full root access.

Description

Buffer overflow in Xsun X server in Solaris 7 allows local users to gain root privileges via a long -dev parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by DiGiT · clocalsolaris
https://www.exploit-db.com/exploits/19876

This exploit targets a buffer overflow vulnerability in the Xsun X11 server on Solaris 7/8. It leverages a long argument to the -dev option to execute arbitrary shellcode with setgid root permissions, potentially escalating to full root access.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: Xsun X11 server (Solaris 7/8)
No auth needed
Prerequisites: Local access to the vulnerable system · Xsun binary must be setgid root
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1140
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2000-04/0188.html

Scores

EPSS 0.0086
EPSS Percentile 53.7%

Details

Status published
Products (4)
sun/solaris 7.0
sun/solaris 8.0
sun/sunos 5.7
sun/sunos 5.8
Published Apr 24, 2000
Tracked Since Feb 18, 2026