Stack overflow

2013-07-1216:55:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.0%

JSON

Stack-based buffer overflow in the bpe_decompress function in (1) BlackBerry QNX Neutrino RTOS through 6.5.0 SP1 and (2) QNX Momentics Tool Suite through 6.5.0 SP1 in the QNX Software Development Platform allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted packets to TCP port 4868.

CPENameOperatorVersion
qnx_momentics_tool_suitele6.5.0
qnx_momentics_tool_suiteeq6.5.0
qnx_momentics_tool_suiteeq4.5
qnx_momentics_tool_suiteeq4.6
qnx_momentics_tool_suiteeq4.7
qnx_neutrino_rtoseq6.4.1
qnx_neutrino_rtoseq6.5.0
qnx_neutrino_rtosle6.5.0

Name	Operator	Version
qnx_momentics_tool_suite	le	6.5.0
qnx_momentics_tool_suite	eq	6.5.0
qnx_momentics_tool_suite	eq	4.5
qnx_momentics_tool_suite	eq	4.6
qnx_momentics_tool_suite	eq	4.7
qnx_neutrino_rtos	eq	6.4.1
qnx_neutrino_rtos	eq	6.5.0
qnx_neutrino_rtos	le	6.5.0