Vulnerabilities > CVE-2002-2041 - Buffer Overflow vulnerability in QNX Rtos 6.1.0

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
qnx
exploit available
NVD
Published: 2002-12-31
Updated: 2008-09-10

Summary

Multiple buffer overflows in realtime operating system (RTOS) 6.1.0 allows local users to execute arbitrary code via (1) a long ABLANG environment variable in phlocale or (2) a long -u option to pkg-installer.

Vulnerable Configurations

Part Description Count
Application
Qnx
1

Exploit-Db

  • descriptionQNX RTOS 6.1 PKG-Installer Buffer Overflow Vulnerability. CVE-2002-2041 . Local exploit for linux platform
    idEDB-ID:21506
    last seen2016-02-02
    modified2002-06-03
    published2002-06-03
    reporterbadc0ded
    sourcehttps://www.exploit-db.com/download/21506/
    titleQNX RTOS 6.1 PKG-Installer Buffer Overflow Vulnerability
  • descriptionQNX RTOS 6.1 phlocale Environment Variable Buffer Overflow Vulnerability. CVE-2002-2041. Local exploit for linux platform
    idEDB-ID:21505
    last seen2016-02-02
    modified2002-06-03
    published2002-06-03
    reporterbadc0ded
    sourcehttps://www.exploit-db.com/download/21505/
    titleQNX RTOS 6.1 phlocale Environment Variable Buffer Overflow Vulnerability

References