CVE-2003-0390

Options Parsing Tool <3.18 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2003-0390. PoCs published by jlanthea, kf.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the Libopt library (opt-3.18 and prior) by overflowing the opt_atoi() function with a crafted argument. It uses a stack-based buffer overflow to overwrite EIP and execute arbitrary shellcode, providing a reverse shell.

Description

Multiple buffer overflows in Options Parsing Tool (OPT) shared library 3.18 and earlier, when used in setuid programs, may allow local users to execute arbitrary code via long command line options that are fed into macros such as opt_warn_2, as used in functions such as opt_atoi.

Exploits (2)

exploitdb WORKING POC VERIFIED

by jlanthea · perllocallinux

https://www.exploit-db.com/exploits/22538

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in the Libopt library (opt-3.18 and prior) by overflowing the opt_atoi() function with a crafted argument. It uses a stack-based buffer overflow to overwrite EIP and execute arbitrary shellcode, providing a reverse shell.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Libopt library (opt-3.18 and prior)

No auth needed

Prerequisites: Vulnerable Libopt library linked to a target application · Ability to pass a crafted argument to the vulnerable function

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb STUB VERIFIED

by kf · cdoslinux

https://www.exploit-db.com/exploits/22537

View Code ZIP pw:eip

This code is a stub demonstrating the vulnerable use of Libopt's opt_atoi() function, which is prone to a buffer overflow. It lacks exploit payloads or mechanisms to trigger arbitrary code execution.

Classification

Stub 80%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Libopt.a version 3.18 and possibly earlier versions

No auth needed

Prerequisites: A program linked to the vulnerable Libopt.a library · Ability to supply excessive data as an argument to the program

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=105371246204866&w=2

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=105121918523320&w=2

Patch x_refsource_confirm

http://nis-www.lanl.gov/~jt/Software/opt/opt-3.19.tar.gz

Scores

EPSS 0.0103

EPSS Percentile 59.0%

Details

Status published

Products (1)

james_theiler/opt < 3.18

Published Jul 02, 2003

Tracked Since Feb 18, 2026