Vulnerability Details CVE-2002-1633
Multiple buffer overflows in QNX 4.25 may allow local users to execute arbitrary code via long command line arguments to (1) sample, (2) ex, (3) du, (4) find, (5) lex, (6) mkdir, (7) rm, (8) serserv, (9) tcpserv, (10) termdef, (11) time, (12) unzip, (13) use, (14) wcc, (15) wcc386, (16) wd, (17) wdisasm, (18) which, (19) wlib, (20) wlink, (21) wpp, (22) wpp386, (23) wprof, (24) write, or (25) wstrip.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 32.6%
CVSS Severity
CVSS v2 Score 4.6
References
- http://www.kb.cert.org/vuls/id/879386
- http://www.securityfocus.com/archive/1/276553
- http://www.securityfocus.com/bid/5000
- https://exchange.xforce.ibmcloud.com/vulnerabilities/9341
- http://www.kb.cert.org/vuls/id/879386
- http://www.securityfocus.com/archive/1/276553
- http://www.securityfocus.com/bid/5000
- https://exchange.xforce.ibmcloud.com/vulnerabilities/9341