CVE-2008-3024

QNX Momentics < 6.3.2 - Local Privilege Escalation via Long .pal Filename

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-3024. PoCs published by Filipe Balestra.

AI-analyzed exploit summary This exploit leverages a local buffer overflow in the 'phgrafx' utility of QNX Neutrino RTOS by creating a maliciously long filename in the palette directory, leading to arbitrary code execution with superuser privileges or a denial of service.

Description

Stack-based buffer overflow in phgrafx in QNX Momentics (aka RTOS) 6.3.2 and earlier allows local users to gain privileges via a long .pal filename in palette/.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Filipe Balestra · textdosunix

https://www.exploit-db.com/exploits/32009

View Code ZIP pw:eip

This exploit leverages a local buffer overflow in the 'phgrafx' utility of QNX Neutrino RTOS by creating a maliciously long filename in the palette directory, leading to arbitrary code execution with superuser privileges or a denial of service.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: QNX Neutrino RTOS 6.3.2 and 6.3.0

Auth required

Prerequisites: Local access to the system · Ability to write to the /tmp directory · Presence of the 'phgrafx' utility

MITRE ATT&CK