CVE-2000-0693

Raptor GFX Configuration Tool - Local Command Execution via PATH Manipulation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0693.

AI-analyzed exploit summary This exploit leverages an insecure PATH environment variable handling in the `pgxconfig` utility of TechSource Raptor GFX cards. By manipulating the PATH to include a malicious `chown` script, the attacker can execute arbitrary code with root privileges due to the setuid(0) call in the vulnerable program.

Description

pgxconfig in the Raptor GFX configuration tool uses a relative path name for a system call to the "cp" program, which allows local users to execute arbitrary commands by modifying their path to point to an alternate "cp" program.

Exploits (1)

exploitdb WORKING POC
shelllocalsolaris
https://www.exploit-db.com/exploits/20147

This exploit leverages an insecure PATH environment variable handling in the `pgxconfig` utility of TechSource Raptor GFX cards. By manipulating the PATH to include a malicious `chown` script, the attacker can execute arbitrary code with root privileges due to the setuid(0) call in the vulnerable program.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: TechSource Raptor GFX pgxconfig utility
No auth needed
Prerequisites: Compiler (e.g., gcc) installed on the system · Write access to a directory in the PATH
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Vendor Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2000-07/0463.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/1501
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1563

Scores

EPSS 0.0026
EPSS Percentile 49.2%

Details

Status published
Products (1)
tech-source/raptor_gfx_pgx32 2.3.1
Published Oct 20, 2000
Tracked Since Feb 18, 2026