EXPLOITDB-EDB-21500

EXPLOITDB text VERIFIED WORKING POC

Exploit for CVE-2002-0793 - Blackberry Qnx Neutrino Real-time Operating System - Symlink Following

AI Analysis

This exploit leverages a vulnerability in the QNX RTOS monitor utility, which is installed setuid root by default. By using the -f command line option, a local attacker can overwrite arbitrary system files, such as /etc/passwd, leading to privilege escalation.

Attack Type

LPE

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type local

Platform linux

Language text

Files 1

https://www.exploit-db.com/exploits/21500

Authors

Simon Ouellette

Vulnerability

CVE-2002-0793

Blackberry Qnx Neutrino Real-time Operating System - Symlink Following

MEDIUM

CVSS 5.5