CVE-2000-0704

Freewnn - Buffer Overflow

Title source: rule

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0704. PoCs published by UNYUN.

AI-analyzed exploit summary This exploit targets a remote buffer overflow in Wnn4.2's jserver daemon (CVE-2000-0704) by sending a maliciously crafted long string with a Wnn command (e.g., JS_OPEN) to execute arbitrary code, typically as root. The shellcode spawns a reverse shell, and the exploit includes NOP sleds and a hardcoded return address for reliable exploitation.

Description

Buffer overflow in SGI Omron WorldView Wnn allows remote attackers to execute arbitrary commands via long JS_OPEN, JS_MKDIR, or JS_FILE_INFO commands.

Exploits (1)

exploitdb WORKING POC VERIFIED

by UNYUN · cremoteunix

https://www.exploit-db.com/exploits/20163

View Code ZIP pw:eip

This exploit targets a remote buffer overflow in Wnn4.2's jserver daemon (CVE-2000-0704) by sending a maliciously crafted long string with a Wnn command (e.g., JS_OPEN) to execute arbitrary code, typically as root. The shellcode spawns a reverse shell, and the exploit includes NOP sleds and a hardcoded return address for reliable exploitation.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Wnn4.2 jserver daemon

No auth needed

Prerequisites: Target must have WorldView Japanese, Korean, or Chinese installed · jserver daemon must be running and accessible on port 22273

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Various Sources vendor-advisory x_refsource_sgi

ftp://sgigate.sgi.com/security/20000803-01-A

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/1603

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/11080

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/5163

Scores

EPSS 0.1310

EPSS Percentile 95.9%

Details

Status published

Products (7)

freewnn/freewnn 1.0

freewnn/freewnn 1.1

freewnn/freewnn 1.1.1_axxx

omron/worldview 6.5

wnn/wnn4 4.2.2tl

wnn/wnn4 4.2.5tl

wnn/wnn4 4.2.8

Published Oct 20, 2000

Tracked Since Feb 18, 2026