darnellkeith/PEASS-ng
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Empty LD_LIBRARY_PATH before running strace. Prevents false positives, since strace does follow the variable, but SUID binaries don't.

Browse Source
This commit is contained in:
Martin Monerjan 2021-09-24 10:40:29 +02:00
parent d6d96b1308
commit b3e5077046
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
linPEAS/linpeas.sh
View File

@ -3156,10 +3156,13 @@ if echo $CHECKS | grep -q IntFiles; then
printf $ITALIC printf $ITALIC
echo "----------------------------------------------------------------------------------------" echo "----------------------------------------------------------------------------------------"
echo " --- Trying to execute $sname with strace in order to look for hijackable libraries..." echo " --- Trying to execute $sname with strace in order to look for hijackable libraries..."
OLD_LD_LIBRARY_PATH=$LD_LIBRARY_PATH
export LD_LIBRARY_PATH=""
timeout 2 "$STRACE" "$sname" 2>&1 | grep -i -E "open|access|no such file" | sed -${E} "s,open|access|No such file,${SED_RED}$ITALIC,g" timeout 2 "$STRACE" "$sname" 2>&1 | grep -i -E "open|access|no such file" | sed -${E} "s,open|access|No such file,${SED_RED}$ITALIC,g"
printf $NC printf $NC
echo "----------------------------------------------------------------------------------------" echo "----------------------------------------------------------------------------------------"
echo "" echo ""
export LD_LIBRARY_PATH=$OLD_LD_LIBRARY_PATH
fi fi
fi fi
fi fi