CyberSec.Space Logo
Back to CVE Browser

CVE-2004-1682

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0280%
EPSS Percentile3.82th
PublishedAug 15, 2004
Last ModifiedApr 16, 2026

Vulnerability Description

Format string vulnerability in QNX 6.1 FTP client allows remote authenticated users to gain group bin privileges via format string specifiers in the QUOTE command.

Affected Platforms (CPE)

πŸ“¦
Qnx

Rtp

= 6.1

References & Advisories

πŸ”— http://marc.info/?l=bugtraq&m=109511327005476&w=2
πŸ”— http://secunia.com/advisories/12533
πŸ”— http://www.rfdslabs.com.br/qnx-advs-04-2004.txt
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/17347
πŸ”— http://marc.info/?l=bugtraq&m=109511327005476&w=2
πŸ”— http://secunia.com/advisories/12533
πŸ”— http://www.rfdslabs.com.br/qnx-advs-04-2004.txt
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/17347

Related Vulnerabilities

CVE-2015-720510.0

Integer underflow in the RTPReceiverVideo::ParseRtpPacket function in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5...

CVE-2004-139010.0

Multiple buffer overflows in the PPPoE daemon (PPPoEd) in QNX RTP 6.1 allow remote attackers to execute arbitrary code via a long ...

CVE-2019-171929.8

The WebRTC component in the Signal Private Messenger application through 4.47.7 for Android processes videoconferencing RTP packet...

CVE-2018-63509.8

An out-of-bounds read was possible in WhatsApp due to incorrect parsing of RTP extension headers. This issue affects WhatsApp for ...