CVE-2011-2490

2011-07-26T22:55:02
ID CVE-2011-2490
Type cve
Reporter NVD
Modified 2011-09-06T23:17:30

Description

opielogin.c in opielogin in OPIE 2.4.1-test1 and earlier does not check the return value of the setuid system call, which allows local users to gain privileges by arranging for an account to already be running its maximum number of processes.