QNX Photon pkg-installer -s Parameter Overflow

2004-09-13T00:00:00
ID OSVDB:9963
Type osvdb
Reporter Julio Cesar Fort(julio@rfdslabs.com.br)
Modified 2004-09-13T00:00:00

Description

Vulnerability Description

A local overflow exists in QNX Photon. The pkg-installer binary fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request containing 94 or more characters to the -s parameter, a malicious user can gain root privileges resulting in a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

A local overflow exists in QNX Photon. The pkg-installer binary fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request containing 94 or more characters to the -s parameter, a malicious user can gain root privileges resulting in a loss of integrity.

References:

Vendor URL: http://www.qnx.com Security Tracker: 1011241 Related OSVDB ID: 9959 Related OSVDB ID: 9960 Related OSVDB ID: 9958 Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2004-09/0413.html Keyword: RLSA_02-2004 ISS X-Force ID: 17339 CVE-2004-1681 Bugtraq ID: 11164