CVE-2002-0767

simpleinit - Privilege Escalation via FIFO Descriptor Handling

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0767. PoCs published by Patrick Smith.

AI-analyzed exploit summary This exploit leverages a file descriptor inheritance vulnerability in simpleinit to execute arbitrary commands as root. It crafts a malicious command structure and writes it to /dev/initctl via an inherited file descriptor.

Description

simpleinit on Linux systems does not close a read/write FIFO file descriptor before creating a child process, which allows the child process to cause simpleinit to execute arbitrary programs with root privileges.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Patrick Smith · clocallinux

https://www.exploit-db.com/exploits/21538

View Code ZIP pw:eip

This exploit leverages a file descriptor inheritance vulnerability in simpleinit to execute arbitrary commands as root. It crafts a malicious command structure and writes it to /dev/initctl via an inherited file descriptor.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: simpleinit (util-linux)

No auth needed

Prerequisites: Local access · Process with inherited file descriptor to /dev/initctl

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Patch, Vendor Advisory vdb-entry x_refsource_xf

http://www.iss.net/security_center/static/9357.php

Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/5001

Exploit, Patch, Vendor Advisory mailing-list x_refsource_bugtraq

http://online.securityfocus.com/archive/1/276739

Scores

EPSS 0.0144

EPSS Percentile 69.8%

Details

Status published

Products (1)

richard_gooch/simpleinit 2.0.2

Published Aug 12, 2002

Tracked Since Feb 18, 2026