mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-30 18:56:19 +00:00
2.1 KiB
2.1 KiB
CVE-2019-1010023
%20&color=brightgreen)
Description
GNU Libc current is affected by: Re-mapping current loaded library with malicious ELF file. The impact is: In worst case attacker may evaluate privileges. The component is: libld. The attack vector is: Attacker sends 2 ELF files to victim and asks to run ldd on it. ldd execute code. NOTE: Upstream comments indicate "this is being treated as a non-security bug and no real threat.
POC
Reference
Github
- https://github.com/11notes/docker-paperless-ngx
- https://github.com/ARPSyndicate/cvemon
- https://github.com/CKA-codespace/cg-compare
- https://github.com/DanMolz/wiz-scripts
- https://github.com/Dariani223/DevOpsFinal
- https://github.com/Giovanni26101982/Grupo4_Docker_Tarea3
- https://github.com/GrigGM/05-virt-04-docker-hw
- https://github.com/Myash-New/05-virt-04-docker-in-practice
- https://github.com/Oscar112248/Grupo4_Docker_Tarea3
- https://github.com/PajakAlexandre/wik-dps-tp02
- https://github.com/PaulJara84/Grupo4_Docker_Tarea3
- https://github.com/Telooss/TP-WIK-DPS-TP02
- https://github.com/TimesysGit/meta-timesys
- https://github.com/TinchoXD/Grupo4_Docker_Tarea3
- https://github.com/ardhiatno/ubimicro-fluentbit
- https://github.com/cdupuis/image-api
- https://github.com/drewtwitchell/scancompare
- https://github.com/fokypoky/places-list
- https://github.com/garethr/snykout
- https://github.com/gatecheckdev/gatecheck
- https://github.com/mmbazm/secure_license_server
- https://github.com/oportero/Grupo4_Docker_Tarea3
- https://github.com/poikl246/DevSecOps-2024-v2
- https://github.com/x9nico/Exam_Docker
- https://github.com/z4ng1ew/Trivy-Flask-App-With-Bandit-TruffleHog
- https://github.com/zparnold/deb-checker