You're replying to a comment by Richard.

Richard Permalink
October 26, 2009, 15:58

I've not tried this but it looks to me like Linux will accept relative paths to ELF interpreters, allowing the toxic executable to be its own interpreter and removing the need for a stunt interpreter to be installed at a known location; all that is needed is for the victim not to rename the executable.

It's a shame that ldd uses such a shonky approach.

Reply To This Comment

(why do I need your e-mail?)

(Your twitter name, if you have one. (I'm @pkrumins, btw.))

Type the first letter of your name: (just to make sure you're a human)

Please preview the comment before submitting to make sure it's OK.