Vulnerabilities > CVE-2006-0621 - Local Privilege Escalation and Denial Of Service vulnerability in QNX Rtos 6.2.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Multiple buffer overflows in QNX Neutrino RTOS 6.2.0 allow local users to execute arbitrary code via a long first argument to the (1) su or (2) passwd commands.
References
- http://secunia.com/advisories/18750
- http://securitytracker.com/id?1015599
- http://www.idefense.com/intelligence/vulnerabilities/display.php?id=385
- http://www.idefense.com/intelligence/vulnerabilities/display.php?id=388
- http://www.osvdb.org/22959
- http://www.osvdb.org/22961
- http://www.securityfocus.com/bid/16539
- http://www.vupen.com/english/advisories/2006/0474
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24551
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24554