> Does this > > > [EMAIL PROTECTED]:~$ ./poc /usr/bin/passwd > > > > core dumped! > > mean we are not vulnerable? > > Shachar
Taken from the article: "A proof of concept code is listed at the end of this article that just core dumps the non-readable but executable ELF file." Yes, you are vulnerable. Specifically, the PoC demonstrates it is possible for an unprivileged user to read a non-readable ELF executable file. Mind you, the PoC is a proof of only ONE of the bugs present in the ELF loader. Hope this helps. -- Eli Kara Beyond Security Ltd. http://www.beyondsecurity.com/ http://www.securiteam.com/ The First Integrated Network and Web Application Vulnerability Scanner: http://www.beyondsecurity.com/webscan-wp.pdf
