CVE-2002-2409

Photon microGUI in QNX Neutrino realtime operating system (RTOS) 6.1.0 and 6.2.0 allows attackers to read user clipboard information via a direct request to the 1.TEXT file in a directory whose name is a hex-encoded user ID.

CVSS v2.0 3.5 LOW

3.5^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:M/Au:S/C:P/I:N/A:N

Exploitability : 6.8 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://archives.neohapsis.com/archives/bugtraq/2002-11/0267.html
http://www.iss.net/security_center/static/10658.php
http://www.securityfocus.com/bid/6207
http://archives.neohapsis.com/archives/bugtraq/2002-11/0267.html
http://www.iss.net/security_center/static/10658.php
http://www.securityfocus.com/bid/6207

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:qnx:neutrino_rtos:6.1.0:::::::*
	cpe:2.3:a:qnx:neutrino_rtos:6.2.0:::::::*
	cpe:2.3:a:qnx:photon_microgui::::::::

History

20 Nov 2024, 23:43

Type	Values Removed	Values Added
References	~~() http://archives.neohapsis.com/archives/bugtraq/2002-11/0267.html -~~	() http://archives.neohapsis.com/archives/bugtraq/2002-11/0267.html -
References	~~() http://www.iss.net/security_center/static/10658.php -~~	() http://www.iss.net/security_center/static/10658.php -
References	~~() http://www.securityfocus.com/bid/6207 -~~	() http://www.securityfocus.com/bid/6207 -

Information

Published : 2002-12-31 05:00

Updated : 2024-11-20 23:43

NVD link : CVE-2002-2409

Mitre link : CVE-2002-2409

CVE.ORG link : CVE-2002-2409

JSON object : View

Products Affected

qnx

neutrino_rtos
photon_microgui

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

3.5 /10