Does the QNX4 security flaw exist in QNX6?

QNX4 has a major security flaw in that you can log in as bin and reset/change/eliminate the root password. Is this possible in QNX6?

Can you please name the steps needed to accomplish this attack?

I want to verify for my box has neither bin user nor such a group.


Login as bin or any other user and go to the /etc directory.

  1. cat passwd > out
  2. vedit
  3. Hit alt+F 1 or 2 times as necessary until it opens
  4. Then hit “oâ€