CVE-2000-0695

Raptor GFX pgxconfig - Local Privilege Escalation via Command Line Options

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0695. PoCs published by suid.

AI-analyzed exploit summary This exploit leverages an insecure PATH environment variable handling in the Raptor GFX configuration utility (pgxconfig) to execute arbitrary code as root. It compiles a malicious binary and manipulates the PATH to trick pgxconfig into executing it with elevated privileges.

Description

Buffer overflows in pgxconfig in the Raptor GFX configuration tool allow local users to gain privileges via command line options.

Exploits (1)

exploitdb WORKING POC VERIFIED

by suid · bashlocalsolaris

https://www.exploit-db.com/exploits/20147

View Code ZIP pw:eip

This exploit leverages an insecure PATH environment variable handling in the Raptor GFX configuration utility (pgxconfig) to execute arbitrary code as root. It compiles a malicious binary and manipulates the PATH to trick pgxconfig into executing it with elevated privileges.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: TechSource Raptor GFX configurator (pgxconfig)

No auth needed

Prerequisites: gcc or equivalent compiler installed · pgxconfig must be setuid root · write access to current directory

MITRE ATT&CK

T1548.001 - Setuid and Setgid T1574.007 - Path Interception by PATH Environment Variable

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Vendor Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2000-07/0463.html

Scores

EPSS 0.0087

EPSS Percentile 54.2%

Details

Status published

Products (1)

tech-source/raptor_gfx_pgx32 2.3.1

Published Oct 20, 2000

Tracked Since Feb 18, 2026