[Forgot Password]
Login  Register Subscribe

24128

 
 

131573

 
 

110139

 
 

909

 
 

85964

 
 

136

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML view JSON

CVE-2006-0619Date: (C)2006-02-08   (M)2018-02-19


Multiple stack-based buffer overflows in QNX Neutrino RTOS 6.3.0 allow local users to execute arbitrary code via long (1) ABLPATH or (2) ABLANG environment variables in the libAP library (libAp.so.2) or (3) a long PHOTON_PATH environment variable to the setitem function in the libph library.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:CVSS V2 Severity:
CVSS Score : CVSS Score : 4.6
Exploit Score: Exploit Score: 3.9
Impact Score: Impact Score: 6.4
 
CVSS V3 Metrics:CVSS V2 Metrics:
Attack Vector: Access Vector: LOCAL
Attack Complexity: Access Complexity: LOW
Privileges Required: Authentication: NONE
User Interaction: Confidentiality: PARTIAL
Scope: Integrity: PARTIAL
Confidentiality: Availability: PARTIAL
Integrity:  
Availability:  
  
Reference:
SECTRACK-1015599
BID-16539
SECUNIA-18750
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=381
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=382
OSVDB-22964
OSVDB-22965
ADV-2006-0474
qnx-libap-bo(24558)
qnx-libph-bo(24557)

CWE    1
CWE-119

© SecPod Technologies