Difference between revisions of "Vuln kernel execve limiting"

From Atomicorp Wiki
Jump to: navigation, search
(Created page with "= Kernel execev() limits are not enforced = The ASL kernel can enforce limit as defined by the system owner, non-ASL kernels do not have this capability. Attackers can e...")
 

Latest revision as of 19:41, 10 February 2012

[edit] Kernel execev() limits are not enforced

The ASL kernel can enforce limit as defined by the system owner, non-ASL kernels do not have this capability. Attackers can exceed their limits and either cause the system to crash, or to potentially compromise the system or applications on the system.

If you see this vulnerability it can only be caused if you are not running the ASL kernel.

[edit] Next Steps

Check to see if you are using the ASL kernel by going to this link.

If you are not running the ASL kernel:

Please check that you have the kernel installed and then reboot your system into the ASL kernel.

Note: If you have a VPS system, you will not have your own kernel. Please install ASL on the host server.

Personal tools