CVE-2003-0649

xpcd <2.08 - RCE

Title source: llm
STIX 2.1

Description

Buffer overflow in xpcd-svga for xpcd 2.08 and earlier allows local users to execute arbitrary code via a long HOME environment variable.

Exploits (1)

exploitdb WORKING POC VERIFIED
by r-code · clocallinux
https://www.exploit-db.com/exploits/22996

References (2)

Scores

EPSS 0.0076
EPSS Percentile 73.5%

Details

Status published
Products (1)
xpcd/xpcd < 2.08
Published Aug 27, 2003
Tracked Since Feb 18, 2026