CVE-2002-2041

QNX RTOS 6.1.0 - Local Buffer Overflow via ABLANG Environment Variable or pkg-installer -u Option

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2002-2041. PoCs published by badc0ded.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the QNX pkg-installer utility via the '-U' command-line option. It uses a shellcode payload to achieve remote code execution by overwriting the return address with a hardcoded system() address.

Description

Multiple buffer overflows in realtime operating system (RTOS) 6.1.0 allows local users to execute arbitrary code via (1) a long ABLANG environment variable in phlocale or (2) a long -u option to pkg-installer.

Exploits (2)

exploitdb WORKING POC VERIFIED

by badc0ded · clocallinux

https://www.exploit-db.com/exploits/21506

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in the QNX pkg-installer utility via the '-U' command-line option. It uses a shellcode payload to achieve remote code execution by overwriting the return address with a hardcoded system() address.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: QNX pkg-installer (version not specified)

No auth needed

Prerequisites: Access to execute pkg-installer · Knowledge of system() address in memory

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →