CVE-2001-0093

FreeBSD 1.5 - Privilege Escalation via telnetd Environmental Variable Manipulation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0093. PoCs published by Teso.

AI-analyzed exploit summary This exploit targets a remote buffer overflow vulnerability in BSD-based telnetd implementations, allowing remote code execution as root. It uses a combination of heap manipulation and shellcode injection to achieve exploitation.

Description

Vulnerability in telnetd in FreeBSD 1.5 allows local users to gain root privileges by modifying critical environmental variables that affect the behavior of telnetd.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Teso · cremotebsd

https://www.exploit-db.com/exploits/409

View Code ZIP pw:eip

This exploit targets a remote buffer overflow vulnerability in BSD-based telnetd implementations, allowing remote code execution as root. It uses a combination of heap manipulation and shellcode injection to achieve exploitation.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Complex

Reliability

Racy

Target: BSD-based telnetd (FreeBSD, NetBSD, BSDI BSD/OS)

No auth needed

Prerequisites: Network access to the target's telnet port (23) · Vulnerable BSD-based telnetd version

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory x_refsource_netbsd

ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-017.txt.asc

Scores

EPSS 0.0068

EPSS Percentile 47.5%

Details

Status published

Products (1)

freebsd/freebsd 1.5

Published Feb 12, 2001

Tracked Since Feb 18, 2026