EIP-2026-103001

PRE-CVE

Slackware Linux 3.1/3.2 - 'color_xterm' Local Buffer Overflow (2)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103001. PoCs published by Solar Designer.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Slackware Linux 3.1/3.2's color xterm to achieve local privilege escalation (LPE) by manipulating environment variables and leveraging ptrace to locate system() and "/bin/sh" in memory.

Description

Slackware Linux 3.1/3.2 - 'color_xterm' Local Buffer Overflow (2)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Solar Designer · clocallinux

https://www.exploit-db.com/exploits/19286

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Slackware Linux 3.1/3.2's color xterm to achieve local privilege escalation (LPE) by manipulating environment variables and leveraging ptrace to locate system() and "/bin/sh" in memory.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Complex

Reliability

Reliable

Target: color xterm (Slackware Linux 3.1/3.2)

No auth needed

Prerequisites: Local access to a vulnerable Slackware Linux system · color xterm installed · Non-executable stack (NX) bypass via return-to-libc

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026