Vulnerability Description
Multiple buffer overflows in (1) phrelay-cfg, (2) phlocale, (3) pkg-installer, or (4) input-cfg in QNX Photon microGUI for QNX RTP 6.1 allow local users to gain privileges via a long -s (server) command line parameter.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qnx | Photon Microgui | All versions |
| Qnx | Rtp | 6.1 |
References
- http://marc.info/?l=bugtraq&m=109510393407597&w=2
- http://www.rfdslabs.com.br/qnx-advs-03-2004.txt
- http://www.securityfocus.com/bid/11164ExploitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17339
- http://marc.info/?l=bugtraq&m=109510393407597&w=2
- http://www.rfdslabs.com.br/qnx-advs-03-2004.txt
- http://www.securityfocus.com/bid/11164ExploitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17339
FAQ
What is CVE-2004-1681?
CVE-2004-1681 is a vulnerability with a CVSS score of 7.2 (HIGH). Multiple buffer overflows in (1) phrelay-cfg, (2) phlocale, (3) pkg-installer, or (4) input-cfg in QNX Photon microGUI for QNX RTP 6.1 allow local users to gain privileges via a long -s (server) comma...
How severe is CVE-2004-1681?
CVE-2004-1681 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-1681?
Check the references section above for vendor advisories and patch information. Affected products include: Qnx Photon Microgui, Qnx Rtp.