Vulnerabilities > CVE-2004-1682 - Remote Security vulnerability in QNX RTP 6.1

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

qnx

critical

NVD

Published: 2004-08-15

Updated: 2017-07-11

Summary

Format string vulnerability in QNX 6.1 FTP client allows remote authenticated users to gain group bin privileges via format string specifiers in the QUOTE command.

Vulnerable Configurations

Part	Description	Count
Application	Qnx QNX RTP 6.1	1

References

http://marc.info/?l=bugtraq&m=109511327005476&w=2
http://secunia.com/advisories/12533
http://www.rfdslabs.com.br/qnx-advs-04-2004.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/17347