2 matches found
The vulnerability of the Android operating system, which allows a hacker to bypass the security mechanisms of a isolated execution environment
The vulnerability of the libs/binder/Parcel.cpp file in the Parcels software interface of the Android operating system is related to the lack of checking for the return value of system calls. Exploiting this vulnerability allows a malicious actor to bypass the security mechanisms of isolated...
CVE-2010-3316
The runcoprocess function in pamxauth.c in the pamxauth module in Linux-PAM aka pam before 1.1.2 does not check the return values of the setuid, setgid, and setgroups system calls, which might allow local users to read arbitrary files by executing a program that relies on the pamxauth PAM check...