CVE-2002-2042

QNX RTOS <6.1.0 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-2042. PoCs published by badc0ded.

AI-analyzed exploit summary This exploit leverages an insecure ptrace() implementation in QNX RTOS to escalate privileges by attaching to a setuid program (su) and modifying its execution flow via gdb commands. It creates a script to spawn a setuid shell, then uses gdb to inject a setuid(0) call into the su process.

Description

ptrace in the QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows programs to attach to privileged processes, which could allow local users to execute arbitrary code by modifying running processes.

Exploits (1)

exploitdb WORKING POC VERIFIED
by badc0ded · bashlocallinux
https://www.exploit-db.com/exploits/21507

This exploit leverages an insecure ptrace() implementation in QNX RTOS to escalate privileges by attaching to a setuid program (su) and modifying its execution flow via gdb commands. It creates a script to spawn a setuid shell, then uses gdb to inject a setuid(0) call into the su process.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: QNX RTOS 6 prior to 6.4.0
No auth needed
Prerequisites: Unprivileged access to a QNX RTOS 6 system prior to 6.4.0 · gdb installed on the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/9260.php
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://online.securityfocus.com/archive/1/275218
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/4919

Scores

EPSS 0.0103
EPSS Percentile 59.4%

Details

Status published
Products (2)
qnx/rtos 4.25
qnx/rtos 6.1.0
Published Dec 31, 2002
Tracked Since Feb 18, 2026