CVE Reproduction
cve-2009-3895 cve-2012-2836 libexif (Draft)
Reproducing and Patching CVE-2019-13288 - XPDF Infinite recursion & Null pointer dereference
Discovering CVE-2019-13288 in XPDF 3.02 using AFL++ fuzzing and proposing patches.
Vulnerability: infinite recursion; null pointer dereferencing
Understanding CVE-2023-32233 (Draft)
Reproducing Nimbuspwn: Linux Privilege Escalation via Path Traversal and TOCTOU in networkd-dispatcher
A technical walkthrough of reproducing Nimbuspwn (CVE-2022-29799 and CVE-2022-29800), privilege escalation vulnerabilities in networkd-dispatcher exploiting path traversal and TOCTOU race...
Vulnerability: toc-tou race condition; unsanitized path; improper check for symlink
Reproducing CVE-2020-8831: Privilege Escalation via Symlink Attack on Apport's Lock File Implementation
CVE-2020-8831 is a vulnerability where an attacker can create a symlink at /var/lock/apport, redirecting Apport's lock file location and leading...
Vulnerability: using hardcoded path without checking for symlink
Reproducing CVE-2022-0324: Buffer Overflow in dhcp6relay of SONiC
CVE-2022-0324 is a stack buffer overflow vulnerability in the memcpy function within the DHCPv6 relay server of the SONiC network...
Vulnerability: stack buffer overflow - improper length check in read()