CVE-2002-1602

GNU screen 3.9.11 - Buffer Overflow in Braille Module

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1602. PoCs published by Gobbles Security.

AI-analyzed exploit summary This exploit targets a buffer overflow in the braille module of GNU Screen 3.9.11, allowing local privilege escalation via crafted braille table entries. It uses shellcode injection and environment variable manipulation to achieve arbitrary code execution.

Description

Buffer overflow in the Braille module for GNU screen 3.9.11, when HAVE_BRAILLE is defined, allows local users to execute arbitrary code.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Gobbles Security · clocalunix
https://www.exploit-db.com/exploits/21414

This exploit targets a buffer overflow in the braille module of GNU Screen 3.9.11, allowing local privilege escalation via crafted braille table entries. It uses shellcode injection and environment variable manipulation to achieve arbitrary code execution.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: GNU Screen 3.9.11
No auth needed
Prerequisites: Local access to the target system · GNU Screen 3.9.11 installed with braille module enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/4578
Exploit mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/268998
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/8929
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/524227

Scores

EPSS 0.0126
EPSS Percentile 65.9%

Details

Status published
Products (5)
gnu/screen 3.9.4
gnu/screen 3.9.8
gnu/screen 3.9.9
gnu/screen 3.9.10
gnu/screen 3.9.11
Published Apr 23, 2002
Tracked Since Feb 18, 2026