Lucene search

Rtos Security Vulnerabilities

cve

CVE-2002-1239

QNX Neutrino RTOS 6.2.0 uses the PATH environment variable to find and execute the cp program while operating at raised privileges, which allows local users to gain privileges by modifying the PATH to point to a malicious cp program.

6.7AI Score

0.0004EPSS

2004-09-01 04:00 AM

cve

CVE-2002-1633

Multiple buffer overflows in QNX 4.25 may allow local users to execute arbitrary code via long command line arguments to (1) sample, (2) ex, (3) du, (4) find, (5) lex, (6) mkdir, (7) rm, (8) serserv, (9) tcpserv, (10) termdef, (11) time, (12) unzip, (13) use, (14) wcc, (15) wcc386, (16) wd, (17) wd...

8AI Score

0.0005EPSS

2005-03-26 05:00 AM

cve

CVE-2002-1983

The timer implementation in QNX RTOS 6.1.0 allows local users to cause a denial of service (hang) and possibly execute arbitrary code by creating multiple timers with a 1-ms tick.

7.7AI Score

0.0004EPSS

2005-06-28 04:00 AM

cve

CVE-2002-2039

/bin/su in QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows local users to obtain sensitive information from core dump files by sending the SIGSERV (invalid memory reference) signal.

6.2AI Score

0.0004EPSS

2005-07-14 04:00 AM

cve

CVE-2002-2040

The (1) phrafx and (2) phgrafx-startup programs in QNX realtime operating system (RTOS) 4.25 and 6.1.0 do not properly drop privileges before executing the system command, which allows local users to execute arbitrary commands by modifying the PATH environment variable to reference a malicious crtt...

7.6AI Score

0.0004EPSS

2022-10-03 04:23 PM

cve

CVE-2002-2041

Multiple buffer overflows in realtime operating system (RTOS) 6.1.0 allows local users to execute arbitrary code via (1) a long ABLANG environment variable in phlocale or (2) a long -u option to pkg-installer.

7.8AI Score

0.0004EPSS

2005-07-14 04:00 AM

cve

CVE-2002-2042

ptrace in the QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows programs to attach to privileged processes, which could allow local users to execute arbitrary code by modifying running processes.

7.6AI Score

0.0004EPSS

2022-10-03 04:23 PM

cve

CVE-2002-2120

Multiple buffer overflows in QNX RTOS 4.25 may allow attackers to execute arbitrary code via long filename arguments to (1) Watcom or (2) int10.

8.1AI Score

0.001EPSS

2022-10-03 04:23 PM

cve

CVE-2002-2407

Certain patches for QNX Neutrino realtime operating system (RTOS) 6.2.0 set insecure permissions for the files (1) /sbin/io-audio by OS Update Patch A, (2) /bin/shutdown, (3) /sbin/fs-pkg, and (4) phshutdown by QNX experimental patches, (5) cpim, (6) vpim, (7) phrelaycfg, and (8) columns, (9) othel...

7AI Score

0.0004EPSS

2022-10-03 04:23 PM

cve

CVE-2004-1390

Multiple buffer overflows in the PPPoE daemon (PPPoEd) in QNX RTP 6.1 allow remote attackers to execute arbitrary code via a long argument to the (1) -F, (2) name, (3) en, (4) upscript, (5) downscript, (6) retries, (7) timeout, (8) scriptdetach, (9) noscript, (10) nodetach, (11) remote_mac, or (12)...

8.2AI Score

0.042EPSS

2005-02-06 05:00 AM

cve

CVE-2004-1391

Untrusted execution path vulnerability in the PPPoE daemon (PPPoEd) in QNX RTP 6.1 allows local users to execute arbitrary programs by modifying the PATH environment variable to point to a malicious mount program.

7.4AI Score

0.0004EPSS

2005-02-06 05:00 AM

cve

CVE-2005-1528

Untrusted search path vulnerability in the crttrap command in QNX Neutrino RTOS 6.2.1 allows local users to load arbitrary libraries via a LD_LIBRARY_PATH environment variable that references a malicious library.

6.5AI Score

0.0004EPSS

2006-02-09 01:00 AM

cve

CVE-2005-2725

The inputtrap utility in QNX RTOS 6.1.0, 6.3, and possibly earlier versions does not properly check permissions when the -t flag is specified, which allows local users to read arbitrary files.

6.8AI Score

0.0004EPSS

2005-08-30 11:45 AM

cve

CVE-2005-3928

Buffer overflow in phgrafx in QNX 6.2.1 and 6.3.0 allows local users to execute arbitrary code via a long command line argument.

7.9AI Score

0.0004EPSS

2005-11-30 11:03 AM

cve

CVE-2006-0619

Multiple stack-based buffer overflows in QNX Neutrino RTOS 6.3.0 allow local users to execute arbitrary code via long (1) ABLPATH or (2) ABLANG environment variables in the libAP library (libAp.so.2) or (3) a long PHOTON_PATH environment variable to the setitem function in the libph library.

7.5AI Score

0.0004EPSS

2006-02-09 02:02 AM

cve

CVE-2006-0620

Race condition in phfont in QNX Neutrino RTOS 6.2.1 allows local users to execute arbitrary code via unspecified manipulations of the PHFONT and PHOTON2_PATH environment variables.

7.4AI Score

0.0004EPSS

2006-02-09 02:02 AM

cve

CVE-2006-0621

Multiple buffer overflows in QNX Neutrino RTOS 6.2.0 allow local users to execute arbitrary code via a long first argument to the (1) su or (2) passwd commands.

7.4AI Score

0.0004EPSS

2006-02-09 02:02 AM

cve

CVE-2006-0622

QNX Neutrino RTOS 6.3.0 allows local users to cause a denial of service (hang) by supplying a "break *0xb032d59f" command to gdb.

6.4AI Score

0.001EPSS

2006-02-09 02:02 AM

cve

CVE-2006-0623

QNX Neutrino RTOS 6.3.0 ships /etc/rc.d/rc.local with world-writable permissions, which allows local users to modify the file and execute arbitrary code at system startup.

7.2AI Score

0.0004EPSS

2006-02-09 02:02 AM