CVE-2006-0619

high

Description

Multiple stack-based buffer overflows in QNX Neutrino RTOS 6.3.0 allow local users to execute arbitrary code via long (1) ABLPATH or (2) ABLANG environment variables in the libAP library (libAp.so.2) or (3) a long PHOTON_PATH environment variable to the setitem function in the libph library.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/24558

https://exchange.xforce.ibmcloud.com/vulnerabilities/24557

http://www.vupen.com/english/advisories/2006/0474

http://www.securityfocus.com/bid/16539

http://www.osvdb.org/22965

http://www.osvdb.org/22964

http://www.idefense.com/intelligence/vulnerabilities/display.php?id=382

http://www.idefense.com/intelligence/vulnerabilities/display.php?id=381

http://securitytracker.com/id?1015599

http://secunia.com/advisories/18750

Details

Source: Mitre, NVD

Published: 2006-02-09

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00207