Lucene search

[email protected]CVE-2002-2120

HistoryOct 03, 2022 - 4:23 p.m.

CVE-2002-2120

2022-10-0316:23:50

[email protected]

web.nvd.nist.gov

cve-2002-2120

buffer overflow

qnx rtos 4.25

arbitrary code execution

security vulnerability

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

8.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

44.9%

JSON

Multiple buffer overflows in QNX RTOS 4.25 may allow attackers to execute arbitrary code via long filename arguments to (1) Watcom or (2) int10.

Affected configurations

NVD

Node

qnxrtosMatch4.25

CPENameOperatorVersion
qnx:rtosqnx rtoseq4.25

CPE	Name	Operator	Version
qnx:rtos	qnx rtos	eq	4.25

References

archives.neohapsis.com/archives/bugtraq/2002-05/0292.html

archives.neohapsis.com/archives/bugtraq/2002-05/0293.html

www.iss.net/security_center/static/9235.php

www.iss.net/security_center/static/9236.php

www.securityfocus.com/bid/4905

www.securityfocus.com/bid/4906

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

8.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

44.9%

JSON

Related for CVE-2002-2120

cvelist1 nvd1