EIP-2026-103013

PRE-CVE

Systrace 1.x - Local Policy Bypass

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103013. PoCs published by Brad.

AI-analyzed exploit summary This exploit bypasses Systrace policy by leveraging insufficient sanity checks in ptrace handling. It forks a process, attaches a tracer, and executes a target binary while intercepting syscalls.

Description

Systrace 1.x - Local Policy Bypass

Exploits (1)

exploitdb WORKING POC VERIFIED

by Brad · clocallinux

https://www.exploit-db.com/exploits/23892

View Code ZIP pw:eip

This exploit bypasses Systrace policy by leveraging insufficient sanity checks in ptrace handling. It forks a process, attaches a tracer, and executes a target binary while intercepting syscalls.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Systrace < 1.5

No auth needed

Prerequisites: Access to execute the exploit binary · Target binary to bypass Systrace policy

MITRE ATT&CK

T1110 - Brute Force T1055 - Process Injection

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026