Skip to content

Permission to run specific command + permission to write somewhere = permission to run anything #11964

New issue
New issue
Closed
#25221
Closed
Permission to run specific command + permission to write somewhere = permission to run anything#11964
#25221
Labels
clirelated to cli/ dir
Milestone
 
2.0.0
@GoldsteinE

Description

@GoldsteinE
GoldsteinE
opened on Sep 9, 2021

Malicious script can use LD_PRELOAD or similar mechanisms to run any command given permission to run some specific command and 'write' permission with any valid path.

https://gist.github.com/GoldsteinE/5a51b105c23e6bbc3f06346bc47a336f
https://asciinema.org/a/zldYPwkLGlRoH4mPvNQ0IPQhX

Metadata

Metadata

Assignees

No one assigned

    Labels

    clirelated to cli/ dir

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions