Published: 18/03/2014 Updated: 11/10/2018

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 730

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

/sbin/ifwatchd in BlackBerry QNX Neutrino RTOS 6.4.x and 6.5.x allows local users to gain privileges by providing an arbitrary program name as a command-line argument.

Vulnerable Product	Search on Vulmon	Subscribe to Product
blackberry qnx neutrino rtos 6.4.1
blackberry qnx neutrino rtos 6.5.0

## # This module requires Metasploit: metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Local Rank = ExcellentRanking include Msf::Post::Linux::Priv include Msf::Post::File include Msf::Exploit::FileDropper def initialize(info = {}) super(up ...

#!/bin/sh # # QNX 64x/65x ifwatchd local root exploit by cenobyte 2013 # <vincitamorpatriae@gmailcom> # # - vulnerability description: # Setuid root ifwatchd watches for addresses added to or deleted from network # interfaces and calls up/down scripts for them Any user can launch ifwatchd # and provide arb ...

CWE-264 http://seclists.org/bugtraq/2014/Mar/66 http://www.exploit-db.com/exploits/32153/http://seclists.org/bugtraq/2014/Mar/88 http://seclists.org/fulldisclosure/2014/Mar/98 http://seclists.org/fulldisclosure/2014/Mar/124 https://www.exploit-db.com/exploits/45575/https://nvd.nist.gov https://www.exploit-db.com/exploits/45575/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-2533

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect