Vulnerability Description
setrlimit in HP-UX 10.01, 10.10, 10.24, 10.20, 11.00, 11.04 and 11.11 does not properly enforce core file size on processes after setuid or setgid privileges are dropped, which could allow local users to cause a denial of service by exhausting available disk space.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | Hp-Ux | 10.01 |
References
- http://archives.neohapsis.com/archives/hp/2001-q3/0000.html
- http://www.iss.net/security_center/static/6810.php
- http://www.securityfocus.com/bid/3416
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://archives.neohapsis.com/archives/hp/2001-q3/0000.html
- http://www.iss.net/security_center/static/6810.php
- http://www.securityfocus.com/bid/3416
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
FAQ
What is CVE-2001-1564?
CVE-2001-1564 is a vulnerability with a CVSS score of 2.1 (LOW). setrlimit in HP-UX 10.01, 10.10, 10.24, 10.20, 11.00, 11.04 and 11.11 does not properly enforce core file size on processes after setuid or setgid privileges are dropped, which could allow local users...
How severe is CVE-2001-1564?
CVE-2001-1564 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-1564?
Check the references section above for vendor advisories and patch information. Affected products include: Hp Hp-Ux.