Inadequate Resource Limit Enforcement in Sandstorm Supervisor

Inadequate Resource Limit Enforcement in Sandstorm Supervisor

CVE-2017-6198 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:C

The Supervisor in Sandstorm doesn't set and enforce the resource limits of a process. This allows remote attackers to cause a denial of service by launching a fork bomb in the sandbox, or by using a large amount of disk space.

Learn more about our Web Application Penetration Testing UK.