CVE-2000-0520

dump restore 0.4b17 - Local Buffer Overflow via Long Tape Name

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0520. PoCs published by Stan Bubrouski.

AI-analyzed exploit summary This exploit leverages a buffer overflow in the 'restore' program (part of dump 0.4b15-1) to execute arbitrary code with root privileges. It crafts a malicious input to overflow the buffer and injects shellcode to spawn a root shell.

Description

Buffer overflow in restore program 0.4b17 and earlier in dump package allows local users to execute arbitrary commands via a long tape name.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Stan Bubrouski · clocallinux
https://www.exploit-db.com/exploits/20004

This exploit leverages a buffer overflow in the 'restore' program (part of dump 0.4b15-1) to execute arbitrary code with root privileges. It crafts a malicious input to overflow the buffer and injects shellcode to spawn a root shell.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: dump 0.4b15-1 (restore program)
No auth needed
Prerequisites: Access to the 'restore' binary · Ability to execute the exploit on the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=96240393814071&w=2
Exploit, Patch, Vendor Advisory x_refsource_misc
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=11880
Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1330

Scores

EPSS 0.0121
EPSS Percentile 64.4%

Details

Status published
Products (6)
stelian/pop_dump 0.4b9.0
stelian/pop_dump 0.4b9.9
stelian/pop_dump 0.4b15.1
stelian/pop_dump 0.4b15.30
stelian/pop_dump 0.4b16.0
stelian/pop_dump 0.4b17.0
Published Jun 07, 2000
Tracked Since Feb 18, 2026