CVE-2000-0743

University of Minnesota gopherd 2.x - Remote Code Execution via Long GDESkey Ticket Value

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0743. PoCs published by Chris Sharp.

AI-analyzed exploit summary This exploit targets a buffer overflow in the 'halidate' function of the University of Minnesota's Gopher Daemon (Gopherd) v2.3.1p0-. It leverages an unchecked sprintf call to overwrite a buffer and execute arbitrary code, specifically appending a root user to /etc/passwd.

Description

Buffer overflow in University of Minnesota (UMN) gopherd 2.x allows remote attackers to execute arbitrary commands via a DES key generation request (GDESkey) that contains a long ticket value.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Chris Sharp · cremotelinux
https://www.exploit-db.com/exploits/20157

This exploit targets a buffer overflow in the 'halidate' function of the University of Minnesota's Gopher Daemon (Gopherd) v2.3.1p0-. It leverages an unchecked sprintf call to overwrite a buffer and execute arbitrary code, specifically appending a root user to /etc/passwd.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: University of Minnesota Gopher Daemon (Gopherd) v2.3.1p0-
No auth needed
Prerequisites: Target running vulnerable Gopherd version · Gopherd running as root
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Patch, Vendor Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2000-08/0112.html
Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1569

Scores

EPSS 0.1263
EPSS Percentile 95.7%

Details

Status published
Products (2)
university_of_minnesota/gopherd 2.3
university_of_minnesota/gopherd 2.3.1
Published Oct 20, 2000
Tracked Since Feb 18, 2026