- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 26195
- Проверка EDB
-
- Пройдено
- Автор
- JULIO CESAR FORT
- Тип уязвимости
- LOCAL
- Платформа
- LINUX
- CVE
- cve-2005-2725
- Дата публикации
- 2005-08-24
Код:
source: https://www.securityfocus.com/bid/14656/info
QNX RTOS is susceptible to a local arbitrary file disclosure vulnerability. This issue is due to a failure of the 'inputtrap' utility to properly implement access control restrictions.
This vulnerability allows local malicious users to gain access to the contents of arbitrary files with superuser privileges, aiding them in further attacks.
QNX RTOS versions 6.1 and 6.3 are affected by this issue. Other versions are also likely affected. This issue is similar to the one described in BID 4901.
inputtrap -t /etc/shadow start- Источник
- www.exploit-db.com
