Description
rscsi in cdrtools 2.01 and earlier allows local users to overwrite arbitrary files and gain root privileges by specifying the target file as a command line argument, which is modified while rscsi is running with privileges.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Secure Network Operations · textlocallinux
https://www.exploit-db.com/exploits/22979
References (2)
Core 2
Core References
Various Sources x_refsource_misc
http://www.secnetops.com/research/advisories/SRT2003-08-01-0126.txt
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=105978381618095&w=2
Scores
EPSS
0.0027
EPSS Percentile
50.2%
Details
Status
published
Products (2)
cdrtools/cdrtools
2.0
cdrtools/cdrtools
2.0.3
Published
Aug 27, 2003
Tracked Since
Feb 18, 2026