A vulnerability was found in QNX RTOS 4.25/6.1.0 (Operating System). It has been declared as problematic. Affected by this vulnerability is an unknown code of the file /bin/su. The manipulation with the input value SIGSERV leads to a information disclosure vulnerability (Core Dump). The CWE definition for the vulnerability is CWE-200. The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information. As an impact it is known to affect confidentiality. The summary by CVE is:

/bin/su in QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows local users to obtain sensitive information from core dump files by sending the SIGSERV (invalid memory reference) signal.

The weakness was released 12/31/2002 as not defined posting (Bugtraq). The advisory is shared at marc.theaimsgroup.com. This vulnerability is known as CVE-2002-2039 since 07/14/2005. The exploitation appears to be easy. An attack has to be approached locally. The exploitation doesn't need any form of authentication. Technical details and also a public exploit are known. MITRE ATT&CK project uses the attack technique T1592 for this issue.

It is possible to download the exploit at exploit-db.com. It is declared as proof-of-concept.

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

The vulnerability is also documented in the databases at X-Force (9256), Exploit-DB (21502) and SecurityFocus (BID 4914†). Entries connected to this vulnerability are available at VDB-19684, VDB-19683 and VDB-19682. Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Productinfo

Type

• Operating System

Vendor

• QNX

Name

• RTOS

Version

• 4.25
• 6.1.0

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion