CVE-2000-0864
GNOME esound <= 0.2.19 - Race Condition via Unix Domain Socket Creation
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2000-0864. PoCs published by Kris Kennaway.
AI-analyzed exploit summary The provided content is a detailed writeup and patch for CVE-2000-0864, which involves a race condition in EsounD (esound) versions up to 0.2.19. The vulnerability arises from a world-writable directory and socket creation, allowing an attacker to manipulate file permissions via a symbolic link attack.
Description
Race condition in the creation of a Unix domain socket in GNOME esound 0.2.19 and earlier allows a local user to change the permissions of arbitrary files and directories, and gain additional privileges, via a symlink attack.
Exploits (1)
The provided content is a detailed writeup and patch for CVE-2000-0864, which involves a race condition in EsounD (esound) versions up to 0.2.19. The vulnerability arises from a world-writable directory and socket creation, allowing an attacker to manipulate file permissions via a symbolic link attack.