Kristian Erik Hermansen

11 exploits Active since Jul 2010
CVE-2017-0358 NOMISEC HIGH WORKING POC
Debian/Ubuntu ntfs-3g Local Privilege Escalation
Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driver for FUSE, does not scrub the environment before executing modprobe with elevated privileges. A local user can take advantage of this flaw for local root privilege escalation.
CVSS 7.8
CVE-2013-4011 METASPLOIT ruby WORKING POC
IBM AIX 6.1/7.1 & VIOS 2.2.2.2-FP-26 SP-02 - Privilege Escalation
Multiple unspecified vulnerabilities in the InfiniBand subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allow local users to gain privileges via vectors involving (1) arp.ib or (2) ibstat.
EIP-2026-107108 EXPLOITDB text WORKING POC
FireEye Appliance - Unauthorized File Disclosure
EIP-2026-104595 EXPLOITDB text WORKING POC
Disconnect.me Mac OSX Client 2.0 - Local Privilege Escalation
EIP-2026-103590 EXPLOITDB text WORKING POC
MySQL 5.0.45 - 'Alter' Denial of Service
CVE-2017-0358 EXPLOITDB HIGH bash WORKING POC
Debian/Ubuntu ntfs-3g Local Privilege Escalation
Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driver for FUSE, does not scrub the environment before executing modprobe with elevated privileges. A local user can take advantage of this flaw for local root privilege escalation.
CVSS 7.8
CVE-2013-4011 EXPLOITDB ruby WORKING POC
IBM AIX 6.1/7.1 & VIOS 2.2.2.2-FP-26 SP-02 - Privilege Escalation
Multiple unspecified vulnerabilities in the InfiniBand subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allow local users to gain privileges via vectors involving (1) arp.ib or (2) ibstat.
CVE-2010-0832 EXPLOITDB bash WORKING POC
libpam-modules <1.1.0-2ubuntu1.1/1.1.1-2ubuntu5 - Privilege Escalation
pam_motd (aka the MOTD module) in libpam-modules before 1.1.0-2ubuntu1.1 in PAM on Ubuntu 9.10 and libpam-modules before 1.1.1-2ubuntu5 in PAM on Ubuntu 10.04 LTS allows local users to change the ownership of arbitrary files via a symlink attack on .cache in a user's home directory, related to "user file stamps" and the motd.legal-notice file.
EIP-2026-100807 EXPLOITDB text WORKING POC
Google Urchin 5.7.03 - Local File Inclusion
CVE-2013-4011 EXPLOITDB bash WORKING POC
IBM AIX 6.1/7.1 & VIOS 2.2.2.2-FP-26 SP-02 - Privilege Escalation
Multiple unspecified vulnerabilities in the InfiniBand subsystem in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, allow local users to gain privileges via vectors involving (1) arp.ib or (2) ibstat.
EIP-2026-100010 EXPLOITDB text WORKING POC
IBM AIX High Availability Cluster Multiprocessing (HACMP) - Local Privilege Escalation