Vulnerability Development mailing list archives

Re: /lib/ld-2.2.4.so

From: FozZy <fozzy () dmpfrance com>
Date: Wed, 24 Apr 2002 23:12:05 +0200

You can't fix it. You can always do

      cp file-with-mode-444-perms ./foobar
      chmod +x foobar
      ./foobar


Well, not "always". I used to be on a system where home partitions, /tmp, and any place where you can write something, 
were mounted as noexec. There was also no compiler, etc.
But, with this trick a cracker could upload his favorite binary exploit and easily run it.

FozZy

Current thread:

Re: /lib/ld-2.2.4.so, (continued)
- Re: /lib/ld-2.2.4.so Eric Rostetter (Apr 24)
- Re: /lib/ld-2.2.4.so Olaf Kirch (Apr 24)
  - Re: /lib/ld-2.2.4.so Bill Weiss (Apr 24)
    - Re: /lib/ld-2.2.4.so Kurt Seifried (Apr 25)
    - Re: /lib/ld-2.2.4.so Robert A. Seace (Apr 25)
    - nobody suid shell (kind of relationship with the ld-2.2.4 thread...) Anibal Ambertin (Apr 26)
    - Re: nobody suid shell (kind of relationship with the ld-2.2.4 thread...) c0n (Apr 26)
    - Re: nobody suid shell (kind of relationship with the ld-2.2.4 thread...) Bill Weiss (Apr 26)
    - Re: nobody suid shell (kind of relationship with the ld-2.2.4 thread...) Jim Nanney (Apr 26)
    - Re: /lib/ld-2.2.4.so Florian Weimer (Apr 26)
  - Re: /lib/ld-2.2.4.so FozZy (Apr 24)
    - RE: /lib/ld-2.2.4.so Tech Support (Apr 25)
    - Re: /lib/ld-2.2.4.so SpaceWalker (Apr 26)
    - Re: /lib/ld-2.2.4.so Michal Zalewski (Apr 25)
    - Re: /lib/ld-2.2.4.so Olaf Kirch (Apr 25)
- Re: /lib/ld-2.2.4.so Pavel Kankovsky (Apr 24)
- Re: /lib/ld-2.2.4.so Bill Weiss (Apr 24)
- Re: /lib/ld-2.2.4.so Birger Toedtmann (Apr 24)
  - Re: /lib/ld-2.2.4.so Dmitry Alyabyev (Apr 25)
- Re: /lib/ld-2.2.4.so Michal Podsedník (Apr 24)
- Re: /lib/ld-2.2.4.so Robert A. Seace (Apr 24)

(Thread continues...)