CVE-2002-0431

XTux - Denial of Service via Random Initial Connection Inputs

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0431. PoCs published by b0iler.

AI-analyzed exploit summary This Perl script exploits a denial-of-service vulnerability in the XTux server (June 01, 2001 version) by sending unexpected characters to the server, causing it to become unresponsive and consume excessive CPU resources.

Description

XTux allows remote attackers to cause a denial of service (CPU consumption) via random inputs in the initial connection.

Exploits (1)

exploitdb WORKING POC VERIFIED

by b0iler · perldoslinux

https://www.exploit-db.com/exploits/21338

View Code ZIP pw:eip

This Perl script exploits a denial-of-service vulnerability in the XTux server (June 01, 2001 version) by sending unexpected characters to the server, causing it to become unresponsive and consume excessive CPU resources.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: XTux server (June 01, 2001 version)

No auth needed

Prerequisites: Network access to the XTux server · Server must be running the vulnerable version

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Vendor Advisory vdb-entry x_refsource_xf

http://www.iss.net/security_center/static/8422.php

Vendor Advisory mailing-list x_refsource_bugtraq

http://online.securityfocus.com/archive/1/260912

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/4260

Product x_refsource_misc

https://sourceforge.net/tracker/index.php?func=detail&aid=529046&group_id=206&atid=100206

Scores

EPSS 0.0321

EPSS Percentile 86.6%

Details

Status published

Products (1)

dave_lawrence/xtux 2001-06-01

Published Jul 26, 2002

Tracked Since Feb 18, 2026