CVE-2002-1239

QNX Neutrino RTOS 6.2.0 uses the PATH environment variable to find and execute the cp program while operating at raised privileges, which allows local users to gain privileges by modifying the PATH to point to a malicious cp program.

CVSS v2.0 7.2 HIGH

7.2^/10

CVSS v2.0 : HIGH

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0066.html
http://marc.info/?l=bugtraq&m=103679043232178&w=2
http://www.idefense.com/advisory/11.08.02b.txt	Exploit Patch Vendor Advisory
http://www.iss.net/security_center/static/10564.php	Vendor Advisory
http://www.securityfocus.com/bid/6146
http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0066.html
http://marc.info/?l=bugtraq&m=103679043232178&w=2
http://www.idefense.com/advisory/11.08.02b.txt	Exploit Patch Vendor Advisory
http://www.iss.net/security_center/static/10564.php	Vendor Advisory
http://www.securityfocus.com/bid/6146

Configurations

Configuration 1 (hide)

cpe:2.3:a:qnx:rtos:6.2.0:*:*:*:*:*:*:*

History

20 Nov 2024, 23:40

Type	Values Removed	Values Added
References	~~() http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0066.html -~~	() http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0066.html -
References	~~() http://marc.info/?l=bugtraq&m=103679043232178&w=2 -~~	() http://marc.info/?l=bugtraq&m=103679043232178&w=2 -
References	~~() http://www.idefense.com/advisory/11.08.02b.txt - Exploit, Patch, Vendor Advisory~~	() http://www.idefense.com/advisory/11.08.02b.txt - Exploit, Patch, Vendor Advisory
References	~~() http://www.iss.net/security_center/static/10564.php - Vendor Advisory~~	() http://www.iss.net/security_center/static/10564.php - Vendor Advisory
References	~~() http://www.securityfocus.com/bid/6146 -~~	() http://www.securityfocus.com/bid/6146 -

Information

Published : 2002-11-12 05:00

Updated : 2024-11-20 23:40

NVD link : CVE-2002-1239

Mitre link : CVE-2002-1239

CVE.ORG link : CVE-2002-1239

JSON object : View

Products Affected

qnx

rtos

CWE

NVD-CWE-Other

{"id": "CVE-2002-1239", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2002-11-12T05:00:00.000", "references": [{"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0066.html", "source": "cve@mitre.org"}, {"url": "http://marc.info/?l=bugtraq&m=103679043232178&w=2", "source": "cve@mitre.org"}, {"url": "http://www.idefense.com/advisory/11.08.02b.txt", "tags": ["Exploit", "Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.iss.net/security_center/static/10564.php", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/6146", "source": "cve@mitre.org"}, {"url": "http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0066.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=103679043232178&w=2", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.idefense.com/advisory/11.08.02b.txt", "tags": ["Exploit", "Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.iss.net/security_center/static/10564.php", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/6146", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "QNX Neutrino RTOS 6.2.0 uses the PATH environment variable to find and execute the cp program while operating at raised privileges, which allows local users to gain privileges by modifying the PATH to point to a malicious cp program."}, {"lang": "es", "value": "QNX Neutrino RTOS 6.2.0 usa la variable de entorno PATH para encontrar y ejecutar el programa cp mientras opera con privilegios elevados, lo que permite a usuarios locales ganar privilegios modificando PATH para que apunte a un programa cp malicioso."}], "lastModified": "2024-11-20T23:40:53.423", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:qnx:rtos:6.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B3A983E-7A0C-4BA9-AC9C-131437BFE793"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}