phgrafx.txt

a buffer overflow vulnerability in the utility "phgrafx" included in the QNX Neutrino Realtime Operating System can potentially be exploited by malicious users to escalate their privileges by default the application is suid and owned by root. example: qnx$ uname -a; id QNX qnx 6.3.0...

QNX RTOS 4.25/6.1 - 'phgrafx' Local Privilege Escalation

source: https://www.securityfocus.com/bid/4915/info The QNX phgrafx utility is prone to an issue which may make it possible for local attackers to escalate privileges. This issue is due to unsafe use of the system function to invoke other programs. This vulnerability may be trivially exploited to...