Vulnerabilities > CVE-2002-2041 - Buffer Overflow vulnerability in QNX Rtos 6.1.0

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
qnx
exploit available

Summary

Multiple buffer overflows in realtime operating system (RTOS) 6.1.0 allows local users to execute arbitrary code via (1) a long ABLANG environment variable in phlocale or (2) a long -u option to pkg-installer.

Vulnerable Configurations

Part Description Count
Application
Qnx
1

Exploit-Db

  • descriptionQNX RTOS 6.1 PKG-Installer Buffer Overflow Vulnerability. CVE-2002-2041 . Local exploit for linux platform
    idEDB-ID:21506
    last seen2016-02-02
    modified2002-06-03
    published2002-06-03
    reporterbadc0ded
    sourcehttps://www.exploit-db.com/download/21506/
    titleQNX RTOS 6.1 PKG-Installer Buffer Overflow Vulnerability
  • descriptionQNX RTOS 6.1 phlocale Environment Variable Buffer Overflow Vulnerability. CVE-2002-2041. Local exploit for linux platform
    idEDB-ID:21505
    last seen2016-02-02
    modified2002-06-03
    published2002-06-03
    reporterbadc0ded
    sourcehttps://www.exploit-db.com/download/21505/
    titleQNX RTOS 6.1 phlocale Environment Variable Buffer Overflow Vulnerability