Vulnerability: Privilege Escalation via Re-mapping Loaded Library

Vulnerability: Privilege Escalation via Re-mapping Loaded Library

CVE-2019-1010023 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

GNU Libc current is affected by: Re-mapping current loaded library with malicious ELF file. The impact is: In worst case attacker may evaluate privileges. The component is: libld. The attack vector is: Attacker sends 2 ELF files to victim and asks to run ldd on it. ldd execute code. NOTE: Upstream comments indicate "this is being treated as a non-security bug and no real threat.

Learn more about our Web Application Penetration Testing UK.