← back
CVE-2002-1239

CVE-2002-1239

EPSS 0.9%
QNX Neutrino RTOS 6.2.0 uses the PATH environment variable to find and execute the cp program while operating at raised privileges, which allows local users to gain privileges by modifying the PATH to point to a malicious cp program.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0066.htmlhttp://marc.info/?l=bugtraq&m=103679043232178&w=2http://www.idefense.com/advisory/11.08.02b.txthttp://www.iss.net/security_center/static/10564.phphttp://www.securityfocus.com/bid/6146