A design error in the operation of the crypt(3) function exists in QNX. The flaw allows the recovery of passwords from the hashes.