ID:11448 - Exploit for Input validation error in Glibc - CVE-2000-0824

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:11448 - Exploit for Input validation error in Glibc - CVE-2000-0824

ID:11448 - Exploit for Input validation error in Glibc - CVE-2000-0824

Published: June 3, 2025


Vulnerability identifier: #VU110136
Vulnerability risk: Low
CVE-ID: CVE-2000-0824
CWE-ID: CWE-20
Exploitation vector: Local access
Vulnerable software:
Glibc

Link to public exploit:


Vulnerability description

The vulnerability allows a local user to execute arbitrary code.

The unsetenv function in glibc 2.1.1 does not properly unset an environmental variable if the variable is provided twice to a program, which could allow local users to execute arbitrary commands in setuid programs by specifying their own duplicate environmental variables such as LD_PRELOAD or LD_LIBRARY_PATH.


Remediation

Install update from vendor's website.