CVE-2000-0175 in StarOffice
Summary
by MITRE
Buffer overflow in StarOffice StarScheduler web server allows remote attackers to gain root access via a long GET command.
If you want to get best quality of vulnerability data, you may have to visit VulDB.
Analysis
by VulDB Data Team • 04/21/2026
The vulnerability identified as CVE-2000-0175 represents a critical buffer overflow flaw within the StarOffice StarScheduler web server component that forms part of the broader StarOffice suite developed by Sun Microsystems. This particular weakness resides in the web server functionality that processes incoming HTTP GET requests, creating an exploitable condition that can be leveraged by remote attackers to achieve elevated privileges on the affected system. The StarScheduler component was designed to provide scheduling capabilities within the StarOffice environment, but its web server implementation contained insufficient input validation mechanisms that allowed maliciously crafted requests to overwrite critical memory segments.
The technical exploitation of this buffer overflow vulnerability occurs when an attacker submits a specially crafted GET request containing an excessively long parameter value to the StarScheduler web server. This malformed input exceeds the allocated buffer space intended for storing the request parameters, causing adjacent memory locations to be overwritten with attacker-controlled data. The overflow typically occurs in the server's string handling routines where it processes the GET command parameters without proper bounds checking, allowing the attacker to manipulate the program's execution flow. Through careful crafting of the overflow payload, an attacker can overwrite return addresses, function pointers, or other critical control data structures within the program's memory space.
The operational impact of this vulnerability is severe and potentially catastrophic for affected systems, as successful exploitation results in the complete compromise of the target server with root-level privileges. When an attacker gains root access, they can execute arbitrary code with the highest system permissions, effectively taking full control of the compromised machine. This level of access enables the attacker to install persistent backdoors, modify system files, steal sensitive data, establish command and control channels, or use the compromised system as a launch point for further attacks within the network infrastructure. The vulnerability affects systems running StarOffice versions that include the StarScheduler web server component, making it particularly dangerous in enterprise environments where these legacy applications might still be deployed.
Security practitioners should consider this vulnerability in the context of the Common Weakness Enumeration framework, where it maps to CWE-121, which describes heap-based buffer overflow conditions. The attack vector aligns with the MITRE ATT&CK framework's techniques for privilege escalation and remote code execution, specifically targeting the execution of malicious payloads through web server interfaces. Organizations should implement immediate mitigations including patching the affected StarOffice installations to the latest versions that contain the necessary buffer overflow protections, disabling the StarScheduler web server component if it is not essential for business operations, and implementing network segmentation to limit access to systems running this vulnerable software. Additionally, deploying intrusion detection systems capable of identifying suspicious GET request patterns and conducting regular security assessments to identify other potential buffer overflow vulnerabilities in legacy software components remains crucial for maintaining overall system security posture.