Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0618

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2006-0618
Last Modified 07 Mar 2011 09:30:27
Published 08 Feb 2006 09:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-0618

Summary

Format string vulnerability in fontsleuth in QNX Neutrino RTOS 6.3.0 allows local users to execute arbitrary code via format string specifiers in the zeroth argument (program name).

Vulnerable Systems

Application

  • Qnx Neutrino Rtos 6.3.0


References

VUPEN - ADV-2006-0474

IDEFENSE - 20060207 QNX Neutrino RTOS fontsleuth Command Format String Vulnerability

SECUNIA - 18750

XF - qnx-fontsleuth-format-string(24559)

BID - 16539

OSVDB - 22966

SECTRACK - 1015599


Last Updated: 27 May 2016 10:41:44