CVE-2002-2219

chetcpasswd < 2.1 - Unauthenticated Shadow File Information Disclosure via Long User Field

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-2219. PoCs published by Victor Pereira.

AI-analyzed exploit summary This exploit targets a vulnerability in chetcpasswd.cgi where an overly long 'user' parameter in a POST request causes the disclosure of the tail end of the local shadow file. The script sends a crafted HTTP request with a long fake username to trigger the information leak.

Description

chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 allows remote attackers to read the last line of the shadow file via a long user (userid) field.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Victor Pereira · perlwebappscgi
https://www.exploit-db.com/exploits/22111

This exploit targets a vulnerability in chetcpasswd.cgi where an overly long 'user' parameter in a POST request causes the disclosure of the tail end of the local shadow file. The script sends a crafted HTTP request with a long fake username to trigger the information leak.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: chetcpasswd.cgi
No auth needed
Prerequisites: Network access to the target web server · chetcpasswd.cgi must be accessible
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/10946
Exploit, Vendor Advisory x_refsource_misc
http://www.securiteam.com/unixfocus/6C00N0K6AO.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1005847
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/6472

Scores

EPSS 0.0604
EPSS Percentile 92.5%

Details

Status published
Products (1)
chetcpasswd/chetcpasswd 2.1
Published Dec 31, 2002
Tracked Since Feb 18, 2026