CVE-2000-1175

Koules 1.4 - Buffer Overflow via Long Command Line Argument

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-1175. PoCs published by Synnergy.net.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Koules 1.4's svgalib version, specifically in the `init()` function of `koules.sndsrv.linux.c`. It leverages a stack-based overflow via command-line arguments to achieve root privilege escalation by overwriting EIP and executing shellcode.

Description

Buffer overflow in Koules 1.4 allows local users to execute arbitrary commands via a long command line argument.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Synnergy.net · c++localunix

https://www.exploit-db.com/exploits/20410

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Koules 1.4's svgalib version, specifically in the `init()` function of `koules.sndsrv.linux.c`. It leverages a stack-based overflow via command-line arguments to achieve root privilege escalation by overwriting EIP and executing shellcode.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Koules 1.4 (svgalib version)

No auth needed

Prerequisites: Target system must have Koules 1.4 with svgalib support installed setuid root · SVGALIB must be compiled into the binary

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/1967

Exploit, Vendor Advisory mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/145823

Scores

EPSS 0.0036

EPSS Percentile 58.3%

Details

Status published

Products (1)

jan_hubicka/koules 1.4

Published Jan 09, 2001

Tracked Since Feb 18, 2026