CVE-2003-1232

Emacs 21.2.1 - Arbitrary Command Execution via Local Variables Section

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-1232. PoCs published by Georgi Guninski.

AI-analyzed exploit summary This exploit leverages Emacs' handling of local variables in text files to execute arbitrary shell commands via an 'eval' statement. The PoC demonstrates command execution by starting a process when the file is opened in Emacs.

Description

Emacs 21.2.1 does not prompt or warn the user before executing Lisp code in the local variables section of a text file, which allows user-assisted attackers to execute arbitrary commands, as demonstrated using the mode-name variable.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Georgi Guninski · textlocallinux
https://www.exploit-db.com/exploits/26492

This exploit leverages Emacs' handling of local variables in text files to execute arbitrary shell commands via an 'eval' statement. The PoC demonstrates command execution by starting a process when the file is opened in Emacs.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Emacs (versions prior to fix for CVE-2003-1232)
No auth needed
Prerequisites: Victim must open the malicious file in Emacs
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15375
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2005:208
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17496
Issue Tracking x_refsource_confirm
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=286183

Scores

EPSS 0.0301
EPSS Percentile 85.7%

Details

Status published
Products (1)
gnu/emacs 21.2.1
Published Dec 31, 2003
Tracked Since Feb 18, 2026