New Search

HP-UX Running setrlimit(1M) Denial of Service (DoS)

oval:org.mitre.oval:def:5159

setrlimit in HP-UX 10.01 10.10 10.24 10.20 11.00 11.04 and 11.11 does not properly enforce core file size on processes after setuid or setgid privileges are dropeed which could allow local users to cause a denial of service by exhausting available disk space.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • HP-UX 11
Class:
vulnerability
Reference(s):
  • CVE-2001-1564
Product(s):