CVE-2003-0289

cdrecord <2.0 - Privilege Escalation

Title source: llm

Description

Format string vulnerability in scsiopen.c of the cdrecord program in cdrtools 2.0 allows local users to gain privileges via format string specifiers in the dev parameter.

Exploits (2)

exploitdb WORKING POC VERIFIED

by anonymous · perllocallinux

https://www.exploit-db.com/exploits/31

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by CMN · clocallinux

https://www.exploit-db.com/exploits/22594

View Code ZIP pw:eip

References (8)

[Various Sources] http://forums.gentoo.org/viewtopic.php?t=54904

[Exploit, Patch, Vendor Advisory] http://www.securityfocus.com/bid/7565

[Various Sources] ftp://ftp.berlios.de/pub/cdrecord/alpha/cdrtools-2.01a14.tar.gz

[Various Sources] http://www.securiteam.com/exploits/5ZP0C2AAAC.html

[Mailing List] http://marc.info/?l=bugtraq&m=105285564307225&w=2

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2003:058

[Mailing List] http://marc.info/?l=bugtraq&m=105286031812533&w=2

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/12007

Scores

EPSS 0.0013

EPSS Percentile 32.0%

Details

Status published

Products (2)

cdrtools/cdrecord 1.11

cdrtools/cdrecord 2.0

Published Jun 16, 2003

Tracked Since Feb 18, 2026