maximilian attems

2 exploits Active since Nov 2019
CVE-2011-0699 WRITEUP HIGH WRITEUP
Linux Kernel 2.6.37 - Denial of Service via btrfs_ioctl_space_info Integer Signedness Error
Integer signedness error in the btrfs_ioctl_space_info function in the Linux kernel 2.6.37 allows local users to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted slot value.
CVSS 7.0
CVE-2011-1930 EXPLOITDB CRITICAL text WORKING POC
klibc 1.5.20-1.5.21 - Remote Code Execution via DHCP Reply Handling
In klibc 1.5.20 and 1.5.21, the DHCP options written by ipconfig to /tmp/net-$DEVICE.conf are not properly escaped. This may allow a remote attacker to send a specially crafted DHCP reply which could execute arbitrary code with the privileges of any process which sources DHCP options.
CVSS 9.8