CVE-2002-0004
OpenLinux Server - Heap Corruption via Malformed Execution Time in 'at' Program
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2002-0004. PoCs published by SuSE Security.
AI-analyzed exploit summary The writeup describes a local privilege escalation vulnerability in the 'at' scheduler due to improper handling of maliciously crafted time formats, leading to heap corruption and potential arbitrary code execution with root privileges.
Description
Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice.
Exploits (1)
The writeup describes a local privilege escalation vulnerability in the 'at' scheduler due to improper handling of maliciously crafted time formats, leading to heap corruption and potential arbitrary code execution with root privileges.