This is a Linux ELF binary infection exploit that modifies the entry point of an ELF executable to execute a payload (chmod setuid) when the infected binary is run by root. It uses mmap and direct syscalls to inject and restore code.
Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Complex
Reliability
Reliable
Target:Linux ELF binaries (unspecified version)
No auth needed
Prerequisites:Write access to a target ELF binary · Root execution of the infected binary