CVE-2001-0032

ssldump - Format String Vulnerability via URL

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0032. PoCs published by c0ncept.

AI-analyzed exploit summary The exploit describes a format string vulnerability in ssldump, which can lead to a segmentation fault and potentially arbitrary code execution when processing maliciously crafted URLs. The PoC involves running ssldump with elevated privileges and triggering the vulnerability via a browser.

Description

Format string vulnerability in ssldump possibly allows remote attackers to cause a denial of service and possibly gain root privileges via malicious format string specifiers in a URL.

Exploits (1)

exploitdb WRITEUP VERIFIED
by c0ncept · textremoteunix
https://www.exploit-db.com/exploits/20492

The exploit describes a format string vulnerability in ssldump, which can lead to a segmentation fault and potentially arbitrary code execution when processing maliciously crafted URLs. The PoC involves running ssldump with elevated privileges and triggering the vulnerability via a browser.

Classification
Writeup 80%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: ssldump (version not specified)
No auth needed
Prerequisites: ssldump running with elevated privileges · network access to send crafted URL
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/5717
Exploit, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2096
Vendor Advisory mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/149917

Scores

EPSS 0.0435
EPSS Percentile 90.1%

Details

Status published
Products (1)
eric_rescorla/ssldump 0.9b1
Published Feb 16, 2001
Tracked Since Feb 18, 2026