CVE-2003-0449

Progress Database 9.1-9.1D06 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-0449. PoCs published by kf.

AI-analyzed exploit summary This exploit leverages Progress database's improper handling of shared libraries via the PATH environment variable. By crafting a malicious shared object with an _init function, an attacker can escalate privileges to root.

Description

Progress Database 9.1 to 9.1D06 trusts user input to find and load libraries using dlopen, which allows local users to gain privileges via (1) a PATH environment variable that points to malicious libraries, as demonstrated using libjutil.so in_proapsv, or (2) the -installdir command line parameter, as demonstrated using librocket_r.so in _dbagent.

Exploits (1)

exploitdb WORKING POC VERIFIED
by kf · clocallinux
https://www.exploit-db.com/exploits/22773

This exploit leverages Progress database's improper handling of shared libraries via the PATH environment variable. By crafting a malicious shared object with an _init function, an attacker can escalate privileges to root.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: Progress Database (version not specified)
No auth needed
Prerequisites: Write access to a directory in the PATH environment variable · Ability to compile a shared object
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=105561134624665&w=2
Exploit, Patch, Vendor Advisory x_refsource_misc
http://www.secnetops.com/research/advisories/SRT2003-06-13-1009.txt
Exploit, Patch, Vendor Advisory x_refsource_misc
http://www.secnetops.com/research/advisories/SRT2003-06-13-0945.txt
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=105561189625082&w=2

Scores

EPSS 0.0149
EPSS Percentile 70.7%

Details

Status published
Products (1)
progress/database 9.1
Published Aug 07, 2003
Tracked Since Feb 18, 2026