Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0619

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2006-0619
Last Modified 06 Sep 2011 12:00:00
Published 08 Feb 2006 09:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-0619

Summary

Multiple stack-based buffer overflows in QNX Neutrino RTOS 6.3.0 allow local users to execute arbitrary code via long (1) ABLPATH or (2) ABLANG environment variables in the libAP library (libAp.so.2) or (3) a long PHOTON_PATH environment variable to the setitem function in the libph library.

Vulnerable Systems

Application

  • Qnx Rtos 6.3.0


References

XF - qnx-libap-bo(24558)

XF - qnx-libph-bo(24557)

VUPEN - ADV-2006-0474

BID - 16539

OSVDB - 22965

OSVDB - 22964

IDEFENSE - 20060207 QNX Neutrino RTOS libph PHOTON_PATH Buffer Overflow Vulnerability

IDEFENSE - 20060207 QNX Neutrino RTOS libAp ABLPATH Buffer Overflow Vulnerability

SECTRACK - 1015599

SECUNIA - 18750


Last Updated: 27 May 2016 10:41:44