Vulnerability Development mailing list archives
Re: /lib/ld-2.2.4.so
From: Olaf Kirch <okir () caldera de>
Date: Thu, 25 Apr 2002 09:39:16 +0200
On Wed, Apr 24, 2002 at 11:12:05PM +0200, FozZy wrote:
You can't fix it. You can always do cp file-with-mode-444-perms ./foobar chmod +x foobar ./foobarWell, not "always". I used to be on a system where home partitions, /tmp, and any place where you can write something, were mounted as noexec.
I know. But there's always a way around noexec. On most architectures, you
could also just mimick the behavior of ld.so by dlopen()ing the binary
doing a dlsym("_main") and jumping there.
Olaf
--
Olaf Kirch | Anyone who has had to work with X.509 has probably
okir () caldera de | experienced what can best be described as
------------------+ ISO water torture. -- Peter Gutmann
Current thread:
- Re: /lib/ld-2.2.4.so, (continued)
- Re: /lib/ld-2.2.4.so Robert A. Seace (Apr 25)
- nobody suid shell (kind of relationship with the ld-2.2.4 thread...) Anibal Ambertin (Apr 26)
- Re: nobody suid shell (kind of relationship with the ld-2.2.4 thread...) c0n (Apr 26)
- Re: nobody suid shell (kind of relationship with the ld-2.2.4 thread...) Bill Weiss (Apr 26)
- Re: nobody suid shell (kind of relationship with the ld-2.2.4 thread...) Jim Nanney (Apr 26)
- Re: /lib/ld-2.2.4.so Florian Weimer (Apr 26)
- Re: /lib/ld-2.2.4.so FozZy (Apr 24)
- RE: /lib/ld-2.2.4.so Tech Support (Apr 25)
- Re: /lib/ld-2.2.4.so SpaceWalker (Apr 26)
- Re: /lib/ld-2.2.4.so Michal Zalewski (Apr 25)
- Re: /lib/ld-2.2.4.so Olaf Kirch (Apr 25)
- Re: /lib/ld-2.2.4.so Dmitry Alyabyev (Apr 25)