CVE-2000-0617

xconq - Buffer Overflow via Long USER Environment Variable

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0617. PoCs published by V9.

AI-analyzed exploit summary This exploit targets a local buffer overflow in Xconq 7.4.1 via the XCONQCONFIG environment variable and the -L parameter, allowing privilege escalation to the 'games' group. It uses custom shellcode to execute a setreuid() followed by a shell spawn.

Description

Buffer overflow in xconq and cconq game programs on Red Hat Linux allows local users to gain additional privileges via long USER environmental variable.

Exploits (1)

exploitdb WORKING POC VERIFIED

by V9 · clocallinux

https://www.exploit-db.com/exploits/20093

View Code ZIP pw:eip

This exploit targets a local buffer overflow in Xconq 7.4.1 via the XCONQCONFIG environment variable and the -L parameter, allowing privilege escalation to the 'games' group. It uses custom shellcode to execute a setreuid() followed by a shell spawn.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Xconq 7.4.1

No auth needed

Prerequisites: Local access to the system · Xconq 7.4.1 installed with SGID 'games' privileges

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2000-06/0222.html

Scores

EPSS 0.0072

EPSS Percentile 49.0%

Details

Status published

Products (1)

stanley_t._shebs/xconq 7.2.2

Published Jun 22, 2000

Tracked Since Feb 18, 2026