CVE-2002-0658

OSSP mm <1.2.0 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0658. PoCs published by Sebastian Krahmer.

AI-analyzed exploit summary This exploit leverages a race condition in the MM Shared Memory library (libmm) to escalate privileges from the Apache user to root. It involves creating a symlink to /etc/ld.so.preload, injecting code into a CGI process via ptrace, and executing a SUID binary to gain root access.

Description

OSSP mm library (libmm) before 1.2.0 allows the local Apache user to gain privileges via temporary files, possibly via a symbolic link attack.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Sebastian Krahmer · clocallinux

https://www.exploit-db.com/exploits/21667

View Code ZIP pw:eip

This exploit leverages a race condition in the MM Shared Memory library (libmm) to escalate privileges from the Apache user to root. It involves creating a symlink to /etc/ld.so.preload, injecting code into a CGI process via ptrace, and executing a SUID binary to gain root access.

Classification

Working Poc 100%

Attack Type

Lpe

Complexity

Complex

Reliability

Racy

Target: MM Shared Memory library (libmm) with Apache linked against it

No auth needed

Prerequisites: Local shell access as the Apache user · Apache linked against vulnerable libmm · Ability to stop Apache processes · Root must restart Apache

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1559 - Inter-Process Communication T1055 - Process Injection

devstral-2 · analyzed Feb 16, 2026 Full analysis →