CVE-2002-0793

Severity CVSS v4.0:
Pending analysis
Type:
CWE-59 Link Following
Publication date:
12/08/2002
Last modified:
20/11/2024

Description

Hard link and possibly symbolic link following vulnerabilities in QNX RTOS 4.25 (aka QNX4) allow local users to overwrite arbitrary files via (1) the -f argument to the monitor utility, (2) the -d argument to dumper, (3) the -c argument to crttrap, or (4) using the Watcom sample utility.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:blackberry:qnx_neutrino_real-time_operating_system:4.25:*:*:*:*:*:*:*