CVE-2003-0770

IkonBoard <= 3.1.2a - Remote Code Execution via Lang Cookie Injection

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2003-0770. PoCs published by snooq, Nick Cleaton.

AI-analyzed exploit summary This Perl script exploits CVE-2003-0770, an arbitrary command execution vulnerability in IkonBoard 3.1.1 due to insufficient sanitization of user-supplied cookie data. The exploit injects a malicious payload into the 'lang' cookie, which is then executed by the vulnerable CGI script.

Description

FUNC.pm in IkonBoard 3.1.2a and earlier, including 3.1.1, does not properly cleanse the "lang" cookie when it contains illegal characters, which allows remote attackers to execute arbitrary code when the cookie is inserted into a Perl "eval" statement.

Exploits (2)

exploitdb WORKING POC VERIFIED

by snooq · perlwebappscgi

https://www.exploit-db.com/exploits/22500

View Code ZIP pw:eip

This Perl script exploits CVE-2003-0770, an arbitrary command execution vulnerability in IkonBoard 3.1.1 due to insufficient sanitization of user-supplied cookie data. The exploit injects a malicious payload into the 'lang' cookie, which is then executed by the vulnerable CGI script.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: IkonBoard 3.1.1

No auth needed

Prerequisites: Network access to the vulnerable IkonBoard instance · Perl environment to run the exploit

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC VERIFIED

by Nick Cleaton · perlwebappscgi

https://www.exploit-db.com/exploits/22499

View Code ZIP pw:eip

This Perl script exploits CVE-2003-0770, an arbitrary command execution vulnerability in IkonBoard due to insufficient sanitization of user-supplied cookie data. It sends a maliciously crafted 'lang' cookie to execute arbitrary commands, specifically dumping environment variables in this PoC.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: IkonBoard (version not specified)

No auth needed

Prerequisites: Network access to the target web server · IkonBoard installed and accessible

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=106381136115972&w=2

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/336598

Exploit, Patch, Vendor Advisory mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/317234

Scores

EPSS 0.1081

EPSS Percentile 95.3%

Details

Status published

Products (2)

ikonboard.com/ikonboard 3.1.1

ikonboard.com/ikonboard 3.1.2a

Published Sep 22, 2003

Tracked Since Feb 18, 2026