CVE-2000-0340

SuSE Linux 6.3 - Local Buffer Overflow via DISPLAY Environment Variable

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0340. PoCs published by bladi.

AI-analyzed exploit summary This exploit targets a buffer overflow in Gnomelib (S.u.S.E. Linux 6.3) via the DISPLAY environment variable. It injects shellcode to execute /tmp/6M, a setuid binary that spawns a bash shell with elevated privileges.

Description

Buffer overflow in Gnomelib in SuSE Linux 6.3 allows local users to execute arbitrary commands via the DISPLAY environmental variable.

Exploits (1)

exploitdb WORKING POC VERIFIED

by bladi · clocallinux

https://www.exploit-db.com/exploits/19883

View Code ZIP pw:eip

This exploit targets a buffer overflow in Gnomelib (S.u.S.E. Linux 6.3) via the DISPLAY environment variable. It injects shellcode to execute /tmp/6M, a setuid binary that spawns a bash shell with elevated privileges.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Gnomelib (S.u.S.E. Linux 6.3)

No auth needed

Prerequisites: S.u.S.E. Linux 6.3 with vulnerable Gnomelib · Presence of /tmp/6M (setuid binary)

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/1155

Various Sources x_refsource_confirm

http://www.suse.com/us/support/download/updates/axp_63.html

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/templates/archive.pike?list=1&msg=00042902575201.09597%40wintermute-pub

Scores

EPSS 0.0120

EPSS Percentile 64.2%

Details

Status published

Products (2)

suse/suse_linux 6.3

suse/suse_linux 6.4

Published Apr 29, 2000

Tracked Since Feb 18, 2026