CVE-2003-0262

leksbot 1.2.3 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-0262. PoCs published by gunzip.

AI-analyzed exploit summary This exploit targets a local buffer overflow vulnerability in Leksbot (KATAXWR) on Debian Linux 3.0. It leverages a setuid binary to execute arbitrary shellcode, granting a root shell by copying and setting the SUID bit on /bin/ash.

Description

leksbot 1.2.3 in Debian GNU/Linux installs the KATAXWR as setuid root, which allows local users to gain root privileges by exploiting unknown vulnerabilities related to the escalated privileges, which KATAXWR is not designed to have.

Exploits (1)

exploitdb WORKING POC VERIFIED

by gunzip · clocallinux

https://www.exploit-db.com/exploits/22567

View Code ZIP pw:eip

This exploit targets a local buffer overflow vulnerability in Leksbot (KATAXWR) on Debian Linux 3.0. It leverages a setuid binary to execute arbitrary shellcode, granting a root shell by copying and setting the SUID bit on /bin/ash.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Leksbot (KATAXWR) on Debian Linux 3.0

No auth needed

Prerequisites: Leksbot (KATAXWR) installed setuid root · Debian Linux 3.0 environment

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/11945

Patch, Vendor Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2003/dsa-299

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/7505

Scores

EPSS 0.0083

EPSS Percentile 53.0%

Details

Status published

Products (1)

leksbot/leksbot 1.2

Published May 27, 2003

Tracked Since Feb 18, 2026