Jay Fenlason

3 exploits Active since Mar 2000
CVE-2012-3430 WRITEUP WRITEUP
Linux Kernel < 3.0.44 - Information Exposure via Uninitialized Structure in RDS recvmsg
The rds_recvmsg function in net/rds/recv.c in the Linux kernel before 3.0.44 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a (1) recvfrom or (2) recvmsg system call on an RDS socket.
CVE-2012-3430 EXPLOITDB c WORKING POC
Linux Kernel < 3.0.44 - Information Exposure via Uninitialized Structure in RDS recvmsg
The rds_recvmsg function in net/rds/recv.c in the Linux kernel before 3.0.44 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a (1) recvfrom or (2) recvmsg system call on an RDS socket.
CVE-2000-0227 EXPLOITDB c WORKING POC
Linux Kernel 2.2.x - Denial of Service via Unix Domain Socket Exhaustion
The Linux 2.2.x kernel does not restrict the number of Unix domain sockets as defined by the wmem_max parameter, which allows local users to cause a denial of service by requesting a large number of sockets.