CVE-2011-1083

Linux Kernel < 2.6.37.2 - Denial of Service via epoll File Descriptor Tree Traversal

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-1083. PoCs published by Nelson Elhage.

AI-analyzed exploit summary This exploit triggers a denial-of-service condition in the Linux Kernel's epoll subsystem by creating a circular dependency between epoll instances and a pipe, causing the kernel to hang.

Description

The epoll implementation in the Linux kernel 2.6.37.2 and earlier does not properly traverse a tree of epoll file descriptors, which allows local users to cause a denial of service (CPU consumption) via a crafted application that makes epoll_create and epoll_ctl system calls.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Nelson Elhage · cdoslinux
https://www.exploit-db.com/exploits/35403

This exploit triggers a denial-of-service condition in the Linux Kernel's epoll subsystem by creating a circular dependency between epoll instances and a pipe, causing the kernel to hang.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Linux Kernel (versions affected by CVE-2011-1083)
No auth needed
Prerequisites: Local access to the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (15)

Core 15
Core References
Broken Link mailing-list x_refsource_mlist
http://article.gmane.org/gmane.linux.kernel/1105888
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/43522
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00021.html
Mailing List, Patch mailing-list x_refsource_mlist
http://openwall.com/lists/oss-security/2011/03/02/2
Broken Link mailing-list x_refsource_mlist
http://article.gmane.org/gmane.linux.kernel/1106686
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/48898
Issue Tracking, Patch, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=681578
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/48410
Broken Link mailing-list x_refsource_mlist
http://article.gmane.org/gmane.linux.kernel/1105744
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/48964
Mailing List, Patch, Third Party Advisory mailing-list x_refsource_mlist
http://openwall.com/lists/oss-security/2011/03/02/1
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00013.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/48115
Third Party Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2012-0862.html
Broken Link vdb-entry x_refsource_osvdb
http://www.osvdb.org/71265

Scores

EPSS 0.0080
EPSS Percentile 51.4%

Details

CWE
CWE-400
Status published
Products (6)
linux/linux_kernel < 2.6.37.2
redhat/enterprise_linux_desktop 6.0
redhat/enterprise_linux_server 6.0
redhat/enterprise_linux_workstation 6.0
suse/linux_enterprise_desktop 11 sp1 (2 CPE variants)
suse/linux_enterprise_server 11 sp1 (4 CPE variants)
Published Apr 04, 2011
Tracked Since Feb 18, 2026