CVE-2000-0193

Corel Linux 1.0 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0193. PoCs published by suid.

AI-analyzed exploit summary This exploit leverages a misconfiguration in Dosemu (as shipped with Corel Linux 1.0) where the `system.com` binary is accessible to users, allowing arbitrary command execution as root via the `system()` libc call. The PoC demonstrates adding a root user to `/etc/passwd` and gaining a root shell.

Description

The default configuration of Dosemu in Corel Linux 1.0 allows local users to execute the system.com program and gain privileges.

Exploits (1)

exploitdb WORKING POC VERIFIED

by suid · textlocallinux

https://www.exploit-db.com/exploits/19787

View Code ZIP pw:eip

This exploit leverages a misconfiguration in Dosemu (as shipped with Corel Linux 1.0) where the `system.com` binary is accessible to users, allowing arbitrary command execution as root via the `system()` libc call. The PoC demonstrates adding a root user to `/etc/passwd` and gaining a root shell.

Classification

Working Poc 100%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: Dosemu (as shipped with Corel Linux 1.0)

No auth needed

Prerequisites: Dosemu installed with `system.com` accessible to users · Local user access

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/1030

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/templates/archive.pike?list=1&msg=200003020436.PAA20168%40jawa.chilli.net.au

Scores

EPSS 0.0134

EPSS Percentile 67.7%

Details

Status published

Products (1)

corel/linux 1.0

Published Mar 02, 2000

Tracked Since Feb 18, 2026