Buffer overflow in Blackberry Qnx_momentics

CVE-2008-3024

Stack-based buffer overflow in phgrafx in QNX Momentics (aka RTOS) 6.3.2 and earlier allows local users to gain privileges via a long .pal filename in palette/.

Vulnerability class: Buffer Overflow

EPSS: 0.059 (92.3th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References

  • cve@mitre.org (x_refsource_MISC, Broken Link)
  • cve@mitre.org (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_SECTRACK)
  • cve@mitre.org (mailing-list, Exploit, x_refsource_BUGTRAQ, VDB Entry, Third Party Advisory)
  • cve@mitre.org (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_XF)
  • cve@mitre.org (Third Party Advisory, vdb-entry, x_refsource_VUPEN)
  • cve@mitre.org (x_refsource_SECUNIA, Third Party Advisory, third-party-advisory)
  • cve@mitre.org (Exploit, VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
  • cve@mitre.org (Exploit, Third Party Advisory, x_refsource_SREASON, third-party-advisory)