Security Advisory

CVE-2011-2490

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2011-07-27 01:29:00

Last updated 2024-08-06 23:00:34

Assigner redhat

State PUBLISHED

Description

opielogin.c in opielogin in OPIE 2.4.1-test1 and earlier does not check the return value of the setuid system call, which allows local users to gain privileges by arranging for an account to already be running its maximum number of processes.

← Browse all CVEs View on cve.org ↗