CVE-2001-0172

ReiserFS 3.5.28 - Buffer Overflow via Long Directory Name

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0172. PoCs published by Marc Lehmann.

AI-analyzed exploit summary This exploit demonstrates a kernel buffer overflow in ReiserFS 3.5.28 on SuSE Linux 7.0 by creating a directory with an excessively long name (768 characters), which triggers a DoS when listed via 'ls' or 'echo'. The vulnerability may allow arbitrary code execution or chroot escape.

Description

Buffer overflow in ReiserFS 3.5.28 in SuSE Linux allows local users to cause a denial of service and possibly execute arbitrary commands by via a long directory name.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Marc Lehmann · textdoslinux
https://www.exploit-db.com/exploits/20535

This exploit demonstrates a kernel buffer overflow in ReiserFS 3.5.28 on SuSE Linux 7.0 by creating a directory with an excessively long name (768 characters), which triggers a DoS when listed via 'ls' or 'echo'. The vulnerability may allow arbitrary code execution or chroot escape.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Theoretical
Target: ReiserFS 3.5.28 on SuSE Linux 7.0
No auth needed
Prerequisites: Access to a system running ReiserFS 3.5.28 on SuSE Linux 7.0
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2180
Exploit, Vendor Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-01/0127.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/5910

Scores

EPSS 0.0119
EPSS Percentile 64.1%

Details

Status published
Products (2)
hans_reiser/reiserfs 3.5.28
suse/suse_linux 7.0
Published Mar 26, 2001
Tracked Since Feb 18, 2026