CVE-2001-1384

Linux <2.2.20, <2.4.10 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-1384. PoCs published by Rafal Wojtczuk.

AI-analyzed exploit summary The vulnerability in Linux's exec() implementation allows a traced process to execute a setuid image if the tracing process is setuid, potentially enabling privilege escalation. The exploitability is debated, and no actual exploit code is provided.

Description

ptrace in Linux 2.2.x through 2.2.19, and 2.4.x through 2.4.9, allows local users to gain root privileges by running ptrace on a setuid or setgid program that itself calls an unprivileged program, such as newgrp.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Rafal Wojtczuk · textlocallinux
https://www.exploit-db.com/exploits/21124

The vulnerability in Linux's exec() implementation allows a traced process to execute a setuid image if the tracing process is setuid, potentially enabling privilege escalation. The exploitability is debated, and no actual exploit code is provided.

Classification
Writeup 80%
Attack Type
Lpe
Complexity
Moderate
Reliability
Theoretical
Target: Linux kernel (versions affected by CVE-2001-1384)
No auth needed
Prerequisites: Access to a vulnerable Linux system · Ability to trace processes
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (13)

Core 13
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2001-130.html
Various Sources vendor-advisory x_refsource_caldera
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2001-036.0.txt
Various Sources vendor-advisory x_refsource_immunix
http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-035-01
Patch, Vendor Advisory vendor-advisory x_refsource_engarde
http://www.linuxsecurity.com/advisories/other_advisory-1650.html
Third Party Advisory, VDB Entry vendor-advisory x_refsource_hp
http://online.securityfocus.com/advisories/3713
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=100343090106914&w=2
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2001-129.html
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=100350685431610&w=2
Patch, Vendor Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/7311.php
Vendor Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2001_036_kernel_txt.html
Various Sources vendor-advisory x_refsource_mandrake
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-082.php3
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/3447
Various Sources vendor-advisory x_refsource_mandrake
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-079.php3

Scores

EPSS 0.0095
EPSS Percentile 56.9%

Details

Status published
Products (26)
linux/linux_kernel 2.2.0
linux/linux_kernel 2.2.1
linux/linux_kernel 2.2.2
linux/linux_kernel 2.2.3
linux/linux_kernel 2.2.4
linux/linux_kernel 2.2.5
linux/linux_kernel 2.2.6
linux/linux_kernel 2.2.7
linux/linux_kernel 2.2.8
linux/linux_kernel 2.2.9
... and 16 more
Published Oct 18, 2001
Tracked Since Feb 18, 2026