Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
possible privilege escalation on QNX Neutrino 6.3.0
Nov 29 2005 02:00AM
pasquale minervini (minervini neuralnoise com)
a buffer overflow vulnerability in the utility "phgrafx" included in the
QNX Neutrino Realtime Operating System can potentially be exploited by malicious
users to escalate their privileges (by default the application is suid and owned by root).
qnx$ uname -a; id
QNX qnx 6.3.0 2004/04/29-2...
[ more ]
Copyright 2010, SecurityFocus