CVE-2004-2698

imwheel < 1.0.0pre11 - Denial of Service via Symlink Attack on PID File

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-2698. PoCs published by I)ruid.

AI-analyzed exploit summary This exploit targets a race condition in IMWheel's predictable temporary file creation, allowing a local attacker to overwrite the PID file and potentially gain elevated privileges or cause a denial of service. The script floods the PID file with characters and then clears it, exploiting the race window.

Description

Race condition in IMWheel 1.0.0pre11 and earlier, when running with the -k option, allows local users to cause a denial of service (IMWheel crash) and possibly modify arbitrary files via a symlink attack on the imwheel.pid file.

Exploits (1)

exploitdb WORKING POC VERIFIED

by I)ruid · bashlocallinux

https://www.exploit-db.com/exploits/24398

View Code ZIP pw:eip

This exploit targets a race condition in IMWheel's predictable temporary file creation, allowing a local attacker to overwrite the PID file and potentially gain elevated privileges or cause a denial of service. The script floods the PID file with characters and then clears it, exploiting the race window.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Racy

Target: IMWheel 1.0.0pre11

No auth needed

Prerequisites: Local access to the target system · IMWheel running with elevated privileges

MITRE ATT&CK