CVE-2013-2688

Name of the Vulnerable Software and Affected Versions BlackBerry QNX Neutrino RTOS versions prior to 6.5.0 SP1

Description The issue is related to a buffer overflow in phrelay, allowing remote attackers to cause a denial of service or possibly execute arbitrary code via crafted packets to TCP port 4868. This is due to improper handling of the /dev/photon device file.

Recommendations For versions prior to 6.5.0 SP1, update to a version that includes the fix for this issue to prevent exploitation. As a temporary workaround, consider restricting access to TCP port 4868 to minimize the risk of exploitation.