Hacker News new | past | comments | ask | show | jobs | submit login

One could also exec any available 64 bit program and then overwrite all its memory with ptrace on Linux.



Correct but in lots of scenarios (containers etc) you cannot execute ptrace() but you can execute mmap(), mprotect(), read(), write() which is all you really need. Edit: and fork().

See something I published just a month ago: https://github.com/anvilsecure/ulexecve/




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: