CVE-2004-0238

0verkill 0.15pre3 - Multiple Buffer Overflow in load_cfg, save_cfg, send_message, and parse_command_line

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-0238. PoCs published by pi3ki31ny.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the 0verkill game client (CVE-2004-0238) by overflowing the HOME environment variable. It includes shellcode to spawn a shell and adjusts the return address to achieve arbitrary code execution.

Description

Multiple buffer overflows in Overkill (0verkill) 0.15pre3 might allow local users to execute arbitrary code in the client via a long HOME environment variable in the (1) load_cfg and (2) save_cfg functions; possibly allow remote attackers to execute arbitrary code via long strings to (3) the send_message function; and, in the server, via (4) the parse_command_line function.

Exploits (1)

exploitdb WORKING POC VERIFIED

by pi3ki31ny · clocallinux

https://www.exploit-db.com/exploits/23634

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in the 0verkill game client (CVE-2004-0238) by overflowing the HOME environment variable. It includes shellcode to spawn a shell and adjusts the return address to achieve arbitrary code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: 0verkill game client

No auth needed

Prerequisites: Local access to the system · 0verkill game client installed · Execution permissions for the binary

MITRE ATT&CK