CVE-2002-1155

KON kon2 <0.3.9b - Remote Code Execution

Title source: manual

Exploitation Summary

EIP tracks 2 public exploits for CVE-2002-1155. PoCs published by c0ntex, wsxz.

AI-analyzed exploit summary This exploit leverages a buffer overflow in the kon2 utility (v0.3.9b) on RedHat 9.0 by overflowing command-line arguments with a crafted payload containing shellcode and a manipulated return address to achieve local privilege escalation.

Description

Buffer overflow in KON kon2 0.3.9b and earlier allows local users to execute arbitrary code via a long -Coding command line argument.

Exploits (2)

exploitdb WORKING POC VERIFIED

by c0ntex · clocallinux

https://www.exploit-db.com/exploits/22720

View Code ZIP pw:eip

This exploit leverages a buffer overflow in the kon2 utility (v0.3.9b) on RedHat 9.0 by overflowing command-line arguments with a crafted payload containing shellcode and a manipulated return address to achieve local privilege escalation.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: kon2 v0.3.9b on RedHat 9.0

No auth needed

Prerequisites: Local access to the vulnerable system · Presence of vulnerable kon2 binary

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by wsxz · perllocallinux

https://www.exploit-db.com/exploits/22719

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in the kon2 utility (version 0.3.9b-16 and earlier) via the -Coding command-line argument. It leverages a shellcode to escalate privileges to root by exploiting insufficient bounds checking.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: kon2 version 0.3.9b-16 and earlier

No auth needed

Prerequisites: Local access to the vulnerable system · kon2 utility installed

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=105577912106710&w=2

Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2003-050.html

Vendor Advisory vendor-advisory x_refsource_mandrake

http://www.mandriva.com/security/advisories?name=MDKSA-2003:064

Patch, Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2003-047.html

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=105474080512376&w=2

Scores

EPSS 0.0106

EPSS Percentile 60.2%

Details

Status published

Products (5)

redhat/linux 7.1

redhat/linux 7.2

redhat/linux 7.3

redhat/linux 8.0

redhat/linux 9.0

Published Jun 16, 2003

Tracked Since Feb 18, 2026