CVE-2023-4911 GLIBC ld 堆溢出提权

漏洞分析

A buffer overflow was discovered in the GNU C Library’s dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code with elevated privileges.

了解一下tunables相关内容 https://www.gnu.org/software/libc/manual/html_node/Tunables.html

Tunables are a feature in the GNU C Library that allows application authors and distribution maintainers to alter the runtime library behavior to match their workload.

形式是由环境变量GLIBC_TUNABLES指示的由”:”分隔的键值对序列,如:
GLIBC_TUNABLES=glibc.malloc.trim_threshold=128:glibc.malloc.check=3

阅读更多...

CVE-2018-10387 TFTP Server 堆溢出

分析

首先查看漏洞报告:

Heap-based overflow vulnerability in TFTP Server SP 1.66 and earlier allows remote attackers to perform a denial of service or possibly execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2008-2161.

程序是一个开源的TFTP协议服务器.下载v1.66源码到本地.

阅读更多...
  • Copyrights © 2022-2024 翰青HanQi

请我喝杯咖啡吧~

支付宝
微信