Local File Disclosure Vulnerability in glibc 2.1.9x and Earlier

Local File Disclosure Vulnerability in glibc 2.1.9x and Earlier

CVE-2001-0170 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

glibc 2.1.9x and earlier does not properly clear the RESOLV_HOST_CONF, HOSTALIASES, or RES_OPTIONS environmental variables when executing setuid/setgid programs, which could allow local users to read arbitrary files.

Learn more about our User Device Pen Test.