CVE-2002-2040

QNX RTOS <6.1.0 - Privilege Escalation

Title source: llm

Description

The (1) phrafx and (2) phgrafx-startup programs in QNX realtime operating system (RTOS) 4.25 and 6.1.0 do not properly drop privileges before executing the system command, which allows local users to execute arbitrary commands by modifying the PATH environment variable to reference a malicious crttrap program.

Exploits (2)

exploitdb WORKING POC VERIFIED

by badc0ded · bashlocallinux

https://www.exploit-db.com/exploits/21504

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by badc0ded · bashlocallinux

https://www.exploit-db.com/exploits/21503

View Code ZIP pw:eip

References (4)

[Exploit] http://www.securityfocus.com/bid/4915

[Exploit] http://www.securityfocus.com/bid/4916

[Third Party Advisory, VDB Entry] http://online.securityfocus.com/archive/1/275218

[Third Party Advisory] http://www.iss.net/security_center/static/9257.php

Scores

EPSS 0.0031

EPSS Percentile 54.1%

Details

Status published

Products (2)

qnx/rtos 4.25

qnx/rtos 6.1.0

Published Dec 31, 2002

Tracked Since Feb 18, 2026