CVE Vulnerabilities

CVE-2004-1683

Published: Sep 13, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
3.7 LOW
AV:L/AC:H/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

A race condition in crrtrap for QNX RTP 6.1 allows local users to gain privileges by modifying the PATH environment variable to reference a malicious io-graphics program before is executed by crrtrap.

Affected Software

Name Vendor Start Version End Version
Rtos Qnx 6.2.0 6.2.0
Rtos Qnx 6.2.0a 6.2.0a

References