EIP-2026-102975

PRE-CVE

RedHat Linux 5.0/5.1/5.2 / Slackware Linux 3.5 - 'klogd' Local Buffer Overflow (1)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102975. PoCs published by Michal Zalewski.

AI-analyzed exploit summary This exploit leverages a buffer overflow in klogd's handling of kernel messages to achieve local privilege escalation (LPE) by injecting shellcode via printk(). The vulnerability was patched years prior but persisted in some distributions like Slackware and RedHat.

Description

RedHat Linux 5.0/5.1/5.2 / Slackware Linux 3.5 - 'klogd' Local Buffer Overflow (1)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Michal Zalewski · clocallinux

https://www.exploit-db.com/exploits/19314

View Code ZIP pw:eip

This exploit leverages a buffer overflow in klogd's handling of kernel messages to achieve local privilege escalation (LPE) by injecting shellcode via printk(). The vulnerability was patched years prior but persisted in some distributions like Slackware and RedHat.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: klogd (older versions, pre-patch)

No auth needed

Prerequisites: Kernel module insertion privileges (e.g., root or CAP_SYS_MODULE)

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026