QNX Multiple Vulnerabilities
Low RiskICS-CERT ICSA-13-189-01Apr 10, 2013
Summary
QNX Phrelay, Phwindows, and Phditto contain multiple buffer overflow vulnerabilities (CWE-121, CWE-120) that could allow remote code execution on affected systems.
What this means
What could happen
An attacker could execute arbitrary code on QNX systems running these products, potentially gaining control of industrial control logic, data acquisition systems, or other critical processes.
Who's at risk
Water utilities, power distribution facilities, and other critical infrastructure operators using QNX-based automation systems, particularly those running Phrelay for relay control, Phwindows for data logging or visualization, or Phditto for SCADA functions.
How it could be exploited
An attacker with network access to the affected QNX systems could send crafted inputs that trigger buffer overflows in Phrelay, Phwindows, or Phditto, leading to remote code execution without authentication required.
Prerequisites
- Network access to systems running Phrelay, Phwindows, or Phditto
- No authentication required
remotely exploitableno authentication requiredlow complexityno patch availablebuffer overflow vulnerability
Exploitability
Moderate exploit probability (EPSS 3.7%)
Affected products (3)
3 EOL
ProductAffected VersionsFix Status
Phrelay: vers:all/*All versionsNo fix (EOL)
Phwindows: vers:all/*All versionsNo fix (EOL)
Phditto: vers:all/*All versionsNo fix (EOL)
Remediation & Mitigation
0/4
Do now
0/3HARDENINGIsolate or air-gap systems running QNX Phrelay, Phwindows, or Phditto from untrusted networks where possible
HARDENINGImplement network segmentation and firewall rules to restrict access to QNX systems to only trusted sources
WORKAROUNDMonitor network traffic to and from QNX systems for suspicious activity
Long-term hardening
0/1HOTFIXEvaluate feasibility of replacing QNX Phrelay, Phwindows, or Phditto with patched alternatives or vendors that provide security updates
CVEs (2)
โโ Navigate ยท Esc Close
API:
/api/v1/advisories/c90a4212-c648-486d-90d0-970b7c327bad