...
Compass/ROSE can detect some violations of this rule. In particular, it warns when calls to setgid() are immediately preceded by a call to setuid().
Klocwork Version 8.0.4.16 can detect violations of this rule with the SV.FIU.PERMISSIONS checker.
Related Vulnerabilities
Search for vulnerabilities resulting from the violation of this rule on the CERT website.
...