CVE-2011-2918

MEDIUM

Linux Kernel < 3.1 - Denial of Service via Performance Events Subsystem

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-2918. PoCs published by Vince Weaver.

AI-analyzed exploit summary This exploit triggers an integer overflow in the Linux kernel's performance event subsystem (PERF_COUNT_SW_CPU_CLOCK) by creating a high-frequency event counter and inducing overflows during matrix multiplication. It demonstrates a DoS condition by crashing Linux kernel 3.0.0.

Description

The Performance Events subsystem in the Linux kernel before 3.1 does not properly handle event overflows associated with PERF_COUNT_SW_CPU_CLOCK events, which allows local users to cause a denial of service (system hang) via a crafted application.

Exploits (1)

exploitdb WORKING POC

by Vince Weaver · cdoslinux

https://www.exploit-db.com/exploits/17769

View Code ZIP pw:eip

This exploit triggers an integer overflow in the Linux kernel's performance event subsystem (PERF_COUNT_SW_CPU_CLOCK) by creating a high-frequency event counter and inducing overflows during matrix multiplication. It demonstrates a DoS condition by crashing Linux kernel 3.0.0.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Linux kernel 3.0.0

No auth needed

Prerequisites: Linux kernel 3.0.0 with PERF_EVENTS enabled · Local access to the system

MITRE ATT&CK