CVE-2000-0504

Gnome Gdm - Denial of Service

Title source: rule
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0504. PoCs published by Chris Evans.

AI-analyzed exploit summary This exploit targets a denial of service vulnerability in libICE (CVE-2000-0504) by sending a malformed ICE protocol message with an overly large string length value, causing a pointer to access uninitialized memory and trigger a segmentation fault. It specifically affects applications using TCP listening sockets in libICE, such as gnome-session.

Description

libICE in XFree86 allows remote attackers to cause a denial of service by specifying a large value which is not properly checked by the SKIP_STRING macro.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Chris Evans · cdoslinux
https://www.exploit-db.com/exploits/20023

This exploit targets a denial of service vulnerability in libICE (CVE-2000-0504) by sending a malformed ICE protocol message with an overly large string length value, causing a pointer to access uninitialized memory and trigger a segmentation fault. It specifically affects applications using TCP listening sockets in libICE, such as gnome-session.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: libICE (part of X11 windowing system)
No auth needed
Prerequisites: Network access to a vulnerable libICE application with TCP listening sockets
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Various Sources x_refsource_confirm
http://www.xfree86.org/security/
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1369
Vendor Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2000-06/0170.html

Scores

EPSS 0.0328
EPSS Percentile 86.8%

Details

Status published
Products (13)
gnome/gdm 1.0
gnome/gdm 1.1
open_group/x 11.0r5
open_group/x 11.0r6
open_group/x 11.0r6.1
open_group/x 11.0r6.2
open_group/x 11.0r6.3
open_group/x 11.0r6.4
xfree86_project/x11r6 3.3.3
xfree86_project/x11r6 3.3.4
... and 3 more
Published Jun 19, 2000
Tracked Since Feb 18, 2026