CVE-2000-0864

GNOME esound <= 0.2.19 - Race Condition via Unix Domain Socket Creation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0864. PoCs published by Kris Kennaway.

AI-analyzed exploit summary The provided content is a detailed writeup and patch for CVE-2000-0864, which involves a race condition in EsounD (esound) versions up to 0.2.19. The vulnerability arises from a world-writable directory and socket creation, allowing an attacker to manipulate file permissions via a symbolic link attack.

Description

Race condition in the creation of a Unix domain socket in GNOME esound 0.2.19 and earlier allows a local user to change the permissions of arbitrary files and directories, and gain additional privileges, via a symlink attack.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Kris Kennaway · textlocalunix
https://www.exploit-db.com/exploits/20212

The provided content is a detailed writeup and patch for CVE-2000-0864, which involves a race condition in EsounD (esound) versions up to 0.2.19. The vulnerability arises from a world-writable directory and socket creation, allowing an attacker to manipulate file permissions via a symbolic link attack.

Classification
Writeup 90%
Attack Type
Other
Complexity
Moderate
Reliability
Racy
Target: EsounD (esound) up to 0.2.19
No auth needed
Prerequisites: Local access to the system · Ability to create symbolic links in /tmp/.esd
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (9)

Core 9
Core References
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1659
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/5213
Third Party Advisory vendor-advisory x_refsource_mandrake
http://archives.neohapsis.com/archives/bugtraq/2000-09/0328.htm
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2000/20001008
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2000-077.html
Vendor Advisory vendor-advisory x_refsource_freebsd
http://archives.neohapsis.com/archives/freebsd/2000-08/0365.html
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2000-10/0118.html
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2000-09/0095.html

Scores

EPSS 0.0069
EPSS Percentile 48.5%

Details

CWE
CWE-362
Status published
Products (1)
gnome/esound 0.2.19
Published Nov 14, 2000
Tracked Since Feb 18, 2026