CVE-2002-1792

fake_identd 0.9-1.4 - Remote Code Execution via Long Request Split into Multiple Packets

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1792. PoCs published by Jedi/Sector.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Fake Identd (CVE-2002-1792) by sending specially crafted TCP packets to overflow an internal buffer, leading to arbitrary code execution. It includes shellcode to spawn a shell and handles multiple targets with different base addresses.

Description

Buffer overflow in Fake Identd 0.9 through 1.4 allows remote attackers to execute arbitrary code as root via a long request that is split into multiple packets.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Jedi/Sector · cremotelinux
https://www.exploit-db.com/exploits/21663

This exploit targets a buffer overflow vulnerability in Fake Identd (CVE-2002-1792) by sending specially crafted TCP packets to overflow an internal buffer, leading to arbitrary code execution. It includes shellcode to spawn a shell and handles multiple targets with different base addresses.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Fake Identd v1.2, v1.4
No auth needed
Prerequisites: Network access to the target's identd service (port 113) · Target must be running a vulnerable version of Fake Identd
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/1/284953
Exploit, Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/5351

Scores

EPSS 0.0841
EPSS Percentile 94.3%

Details

Status published
Products (6)
fake_identd/fake_identd 0.9
fake_identd/fake_identd 0.9b
fake_identd/fake_identd 1.1
fake_identd/fake_identd 1.2
fake_identd/fake_identd 1.3
fake_identd/fake_identd 1.4
Published Dec 31, 2002
Tracked Since Feb 18, 2026