CyberSec.Space Logo
返回 CVE 浏览器

CVE-2008-3024

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.0100%
EPSS Percentile22.39th
Published2008年7月7日
Last Modified2026年4月23日

Vulnerability Description

Stack-based buffer overflow in phgrafx in QNX Momentics (aka RTOS) 6.3.2 and earlier allows local users to gain privileges via a long .pal filename in palette/.

Affected Platforms (CPE)

📦
Blackberry

Qnx Momentics

<= 6.3.2

References & Advisories

🔗 http://secunia.com/advisories/30808
🔗 http://securityreason.com/securityalert/3974
🔗 http://www.scanit.net/rd/advisories/adv01
🔗 http://www.securityfocus.com/archive/1/493816/100/0/threaded
🔗 http://www.securityfocus.com/bid/30024
🔗 http://www.securitytracker.com/id?1020411
🔗 http://www.vupen.com/english/advisories/2008/1996/references
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/43542

相关漏洞威胁

CVE-2021-320258.1

An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX Software Development Platform versi...

CVE-2013-26877.8

Stack-based buffer overflow in the bpe_decompress function in (1) BlackBerry QNX Neutrino RTOS through 6.5.0 SP1 and (2) QNX Momen...

CVE-2008-535310.0

The Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and...

CVE-2008-535510.0

The "Java Update" feature for Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 1...