CVE-2002-1503

AFD <= 1.2.14 - Local Privilege Escalation via Long MON_WORK_DIR Environment Variable

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1503. PoCs published by eSDee.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in AFD (Automatic File Distributor) via the MON_WORK_DIR environment variable. It uses a heap-based overflow technique to overwrite memory structures and execute arbitrary shellcode, potentially granting root privileges.

Description

Buffer overflow in Automatic File Distributor (AFD) 1.2.14 and earlier allows local users to gain privileges via a long MON_WORK_DIR environment variable or -w (workdir) argument to (1) afd, (2) afdcmd, (3) afd_ctrl, (4) init_afd, (5) mafd, (6) mon_ctrl, (7) show_olog, or (8) udc.

Exploits (1)

exploitdb WORKING POC VERIFIED

by eSDee · clocalunix

https://www.exploit-db.com/exploits/21771

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in AFD (Automatic File Distributor) via the MON_WORK_DIR environment variable. It uses a heap-based overflow technique to overwrite memory structures and execute arbitrary shellcode, potentially granting root privileges.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: AFD 1.2.14

No auth needed

Prerequisites: Local access to the target system · AFD installed with setuid root

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Patch, Vendor Advisory vdb-entry x_refsource_xf

http://www.iss.net/security_center/static/10036.php

Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/5626

Various Sources x_refsource_confirm

http://www.dwd.de/AFD/txt/CHANGES

Exploit, Patch, Vendor Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2002-09/0029.html

Scores

EPSS 0.0115

EPSS Percentile 62.7%

Details

Status published

Products (15)

afd/afd 1.2

afd/afd 1.2.1

afd/afd 1.2.2

afd/afd 1.2.3

afd/afd 1.2.4

afd/afd 1.2.5

afd/afd 1.2.6

afd/afd 1.2.7

afd/afd 1.2.8

afd/afd 1.2.9

... and 5 more

Published Apr 02, 2003

Tracked Since Feb 18, 2026