CVE-2003-0655

cdrtools <2.01 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-0655. PoCs published by Secure Network Operations.

AI-analyzed exploit summary This exploit leverages a vulnerability in the rscsi utility (installed setuid root) to corrupt or modify arbitrary files, allowing a local attacker to escalate privileges by injecting a malicious shared library into /etc/ld.so.preload.

Description

rscsi in cdrtools 2.01 and earlier allows local users to overwrite arbitrary files and gain root privileges by specifying the target file as a command line argument, which is modified while rscsi is running with privileges.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Secure Network Operations · textlocallinux
https://www.exploit-db.com/exploits/22979

This exploit leverages a vulnerability in the rscsi utility (installed setuid root) to corrupt or modify arbitrary files, allowing a local attacker to escalate privileges by injecting a malicious shared library into /etc/ld.so.preload.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: rscsi utility (Schily Tools)
No auth needed
Prerequisites: Local access to the system · rscsi utility installed with setuid root
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=105978381618095&w=2

Scores

EPSS 0.0074
EPSS Percentile 49.6%

Details

Status published
Products (2)
cdrtools/cdrtools 2.0
cdrtools/cdrtools 2.0.3
Published Aug 27, 2003
Tracked Since Feb 18, 2026