Arbitrary Code Execution With "ldd"

Follow Slashdot stories on Twitter

Arbitrary Code Execution With "ldd" 184

Posted by kdawson on Monday October 26, 2009 @11:13AM from the so-easy dept.

pkrumins writes "The ldd utility is more vulnerable than you think. It's frequently used by programmers and system administrators to determine the dynamic library dependencies of executables. Sounds pretty innocent, right? Wrong! It turns out that running ldd on an executable can result in executing arbitrary code. This article details how such executable can be constructed and comes up with a social engineering scenario that may lead to system compromise. I researched this subject thoroughly and found that it's almost completely undocumented."

This discussion has been archived. No new comments can be posted.

Arbitrary Code Execution With "ldd"

Search 184 Comments Log In/Create an Account

Comments Filter:

ldd pwned (Score:2, Funny)

by Anonymous Coward writes: on Monday October 26, 2009 @11:15AM (#29872785)

Sounds like someone needs to make LDD not capable of executing arbitrary code then =] /captainobvious

Share
twitter facebook
Quickly! (Score:2, Funny)

by Drunken Buddhist ( 467947 ) writes: on Monday October 26, 2009 @11:15AM (#29872791) Homepage

Fetch me my tinfoil hat!

Share
twitter facebook
Re:ldd pwned (Score:5, Funny)

by postbigbang ( 761081 ) writes: on Monday October 26, 2009 @11:24AM (#29872879)

Uh, hello? Tech support?
You want me to do what with ldd?
Are you the same guy that told me to rm *? That wasn't funny....

Parent Share
twitter facebook
Another WIN in WINdows (Score:5, Funny)

by MyLongNickName ( 822545 ) writes: on Monday October 26, 2009 @11:25AM (#29872895) Journal

In Windows, we avoid this vulnerability by giving you absolutely no fricking clue what dependencies exist for any given DLL. Suck that Unix fanboys!

Share
twitter facebook
Re:the bug is not in ldd (Score:3, Funny)

by Anonymous Coward writes: on Monday October 26, 2009 @11:27AM (#29872907)

So our lesson here is... don't run any scripts we don't fully understand as root. Thanks Slashdot - I feel so informed today!

Parent Share
twitter facebook
Don't worry... (Score:3, Funny)

by wandazulu ( 265281 ) writes: on Monday October 26, 2009 @11:35AM (#29872999)

...I'm sure someone will find some other vulnerability.

Parent Share
twitter facebook
Remember to Exit Stage Left (Score:5, Funny)

by HaloZero ( 610207 ) writes: <protodeka&gmail,com> on Monday October 26, 2009 @11:46AM (#29873147) Homepage

I researched this subject thoroughly and found that it's almost completely undocumented.
Completely undocumented... <CARUSO NAME="david" STYLE="csi/miami" SHADES="true"> ...until now. </CARUSO>

YEAAAAAAAAAH!

Share
twitter facebook
Re:Cool and so what (Score:5, Funny)

by the 99th penguin ( 1453 ) writes: on Monday October 26, 2009 @11:58AM (#29873327) Journal

times like this, I just want to be able to say:
sandbox $whatever_command
and have it run in a completely safe environment.
[...] Or does such a thing exist?
A virtual machine you mean?

Parent Share
twitter facebook
Re:the bug is not in ldd (Score:1, Funny)

by Anonymous Coward writes: on Monday October 26, 2009 @12:19PM (#29873567)

How do I turn my PC into that drop box you're talking about. I have no interest in child porn, though... no none at all... yes, uh, uhm... it's for uhh... academic, yes academic purposes.... yeah

Parent Share
twitter facebook
Rename it! (Score:4, Funny)

by mweather ( 1089505 ) writes: on Monday October 26, 2009 @12:40PM (#29873807)

They should rename it iddqd in honour of this new feature.

Share
twitter facebook
Re:the bug is not in ldd (Score:3, Funny)

by camperdave ( 969942 ) writes: on Monday October 26, 2009 @01:14PM (#29874233) Journal

That's why I cross-compile my Gentoo on my Atari 600XL. It may take a few months longer, but it's worth it.

Parent Share
twitter facebook
Re:the bug is not in ldd (Score:5, Funny)

by bsDaemon ( 87307 ) writes: on Monday October 26, 2009 @01:14PM (#29874237)

I pretty much only code in Perl these days, so... not even the ones I've written myself, I guess.

Parent Share
twitter facebook

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Arbitrary Code Execution With "ldd" 184

Arbitrary Code Execution With "ldd" More Login

Arbitrary Code Execution With "ldd"

ldd pwned (Score:2, Funny)

Quickly! (Score:2, Funny)

Re:ldd pwned (Score:5, Funny)

Another WIN in WINdows (Score:5, Funny)

Re:the bug is not in ldd (Score:3, Funny)

Don't worry... (Score:3, Funny)

Remember to Exit Stage Left (Score:5, Funny)

Re:Cool and so what (Score:5, Funny)

Re:the bug is not in ldd (Score:1, Funny)

Rename it! (Score:4, Funny)

Re:the bug is not in ldd (Score:3, Funny)

Re:the bug is not in ldd (Score:5, Funny)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot