← back
CVE-2004-1391

CVE-2004-1391

EPSS 0.6%
Untrusted execution path vulnerability in the PPPoE daemon (PPPoEd) in QNX RTP 6.1 allows local users to execute arbitrary programs by modifying the PATH environment variable to point to a malicious mount program.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/fulldisclosure/2004-09/0155.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/17284http://www.kb.cert.org/vuls/id/577566http://www.osvdb.org/9661http://www.rfdslabs.com.br/qnx-advs-01-2004.txthttp://www.securityfocus.com/bid/11105