EIP-2026-114743

PRE-CVE

SunOS 4.1.3 - LD_LIBRARY_PATH / LD_OPTIONS

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-114743. PoCs published by anonymous.

AI-analyzed exploit summary This is a technical writeup describing a vulnerability in SunOS 4.0 and higher where setuid/setgid programs can be exploited via LD_* environment variables if UIDs/GIDs are not properly set. It provides a proof-of-concept example using /bin/login and a malicious library.

Description

SunOS 4.1.3 - LD_LIBRARY_PATH / LD_OPTIONS

Exploits (1)

exploitdb WRITEUP VERIFIED

by anonymous · textremotesolaris

https://www.exploit-db.com/exploits/19044

View Code ZIP pw:eip

This is a technical writeup describing a vulnerability in SunOS 4.0 and higher where setuid/setgid programs can be exploited via LD_* environment variables if UIDs/GIDs are not properly set. It provides a proof-of-concept example using /bin/login and a malicious library.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: SunOS 4.0 and higher (including /usr/lib/sendmail, /usr/bin/login, /usr/bin/su, /usr/5bin/su)

No auth needed

Prerequisites: Access to a vulnerable SunOS system · Ability to set environment variables · Presence of a vulnerable setuid/setgid program

MITRE ATT&CK

T1548.001 - Setuid and Setgid

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026