CVE-2003-0723

gkrellm 2.1.x - Remote Code Execution via Buffer Overflow in gkrellmd

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2003-0723. PoCs published by dodo.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in GKrellMd 2.1.13 by sending a maliciously crafted payload to the server, leading to arbitrary code execution. The shellcode establishes a reverse shell to a specified IP and port.

Description

Buffer overflow in gkrellmd for gkrellm 2.1.x before 2.1.14 may allow remote attackers to execute arbitrary code.

Exploits (2)

exploitdb WORKING POC VERIFIED

by dodo · perlremotefreebsd

https://www.exploit-db.com/exploits/22832

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in GKrellMd 2.1.13 by sending a maliciously crafted payload to the server, leading to arbitrary code execution. The shellcode establishes a reverse shell to a specified IP and port.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: GKrellMd 2.1.13

No auth needed

Prerequisites: Network access to the target server · GKrellMd service running on the target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by dodo · perldosfreebsd

https://www.exploit-db.com/exploits/22831

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in GKrellMd 2.1.10 by sending an overly long string to the daemon, potentially leading to arbitrary code execution. The PoC establishes a TCP connection and sends a malformed payload without authentication.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Theoretical

Target: GKrellMd 2.1.10

No auth needed

Prerequisites: Network access to the target · GKrellMd service running and exposed

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory x_refsource_mandrake

http://www.mandriva.com/security/advisories?name=MDKSA-2003:087

Scores

EPSS 0.0381

EPSS Percentile 88.6%

Details

Status published

Products (2)

gkrellm/gkrellm 2.1.7

gkrellm/gkrellm 2.1.13

Published Oct 20, 2003

Tracked Since Feb 18, 2026