14 matches found
EUVD-2004-1677
Malware in sbrugna...
EUVD-2004-1387
Malware in sbrugna...
EUVD-2001-0325
Malware in sbrugna...
CVE-2004-1683
CVE-2004-1683 concerns a race condition in crrtrap on QNX RTP 6.1. The vulnerability allows local users to gain privileges by manipulating the PATH environment variable to invoke a malicious io-graphics program before crrtrap executes. Impact is described as local privilege escalation with partia...
CVE-2004-1390
Multiple buffer overflows in the PPPoE daemon PPPoEd in QNX RTP 6.1 allow remote attackers to execute arbitrary code via a long argument to the 1 -F, 2 name, 3 en, 4 upscript, 5 downscript, 6 retries, 7 timeout, 8 scriptdetach, 9 noscript, 10 nodetach, 11 remotemac, or 12 localmac flags...
CVE-2004-1390
CVE-2004-1390 affects the PPPoE daemon (PPPoEd) in QNX RTP 6.1 . The issue is described as multiple buffer overflows in PPPoEd that allow a remote attacker to execute arbitrary code by supplying a long argument to any of the flags: -F, name, en, upscript, downscript, retries, timeout, scriptdetac...
CVE-2004-1391
Untrusted execution path vulnerability in the PPPoE daemon PPPoEd in QNX RTP 6.1 allows local users to execute arbitrary programs by modifying the PATH environment variable to point to a malicious mount program...
CVE-2004-1391
Untrusted execution path vulnerability in the PPPoE daemon PPPoEd in QNX RTP 6.1 allows local users to execute arbitrary programs by modifying the PATH environment variable to point to a malicious mount program...
CVE-2004-1390
Multiple buffer overflows in the PPPoE daemon PPPoEd in QNX RTP 6.1 allow remote attackers to execute arbitrary code via a long argument to the 1 -F, 2 name, 3 en, 4 upscript, 5 downscript, 6 retries, 7 timeout, 8 scriptdetach, 9 noscript, 10 nodetach, 11 remotemac, or 12 localmac flags...
CVE-2004-1683
A race condition in crrtrap for QNX RTP 6.1 allows local users to gain privileges by modifying the PATH environment variable to reference a malicious io-graphics program before is executed by crrtrap...
QNX RTP FTP stat Command strtok() Function Overflow
The remote FTP server is vulnerable to a stack overflow when calling the 'strtok' function. An attacker can exploit this flaw to execute arbitrary code on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10692; scriptversion"1.28"; scriptcvsdate"Date:...
CVE-2001-0325
Buffer overflow in QNX RTP 5.60 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a large number of arguments to the stat command...
CVE-2001-0325
CVE-2001-0325 affects QNX RTP 5.60. The vulnerability is a buffer/stack overflow in parsing arguments to the stat command (also described as a strtok()-related overflow in the FTP stat handling), allowing a remote attacker to cause a denial of service and potentially execute arbitrary code. Conne...
CVE-2001-0325
Buffer overflow in QNX RTP 5.60 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a large number of arguments to the stat command...