fbpx

Linux Weaknesses Making It Easier To Get Exploited

Today we will discuss four weaknesses in current Linux and PaX ASLR design and implementation.

1) Too low entropy.
2) Non-uniform distribution.
3) Correlation between objects.
4) Inheritance.

The new technique for exploiting the correlation and weakness is presented, which can bypass full ASLR Linux in 64-bit architecture system in less then a second. A deep analysis of these weaknesses enabled to propose new ASLR design, a concept named as ASLR-NG. This will overcome all the current ASLR’s weaknesses including PaX solution.  Finally presents ASLRA, a tool to analyze the ASLR entropy of Linux.


Ehacking Staff
With more than 50 global partners, we are proud to count the world’s leading cybersecurity training provider. EH Academy is the brainchild of Ehacking, which has been involved in the field of training since the past Five years and continues to help in creating professional IT experts.

Most Popular

What Makes ICS/OT Infrastructure Vulnerable?

Infrastructure security for operational technologies (OT) and industrial control systems (ICS) varies from IT security in several ways, with the inverse confidentiality, integrity, and...

Everything You Must Know About IT/OT Convergence

What is an Operational Technology (OT)? Operational technology (OT) is a technology that primarily monitors and controls physical operations. It can automate and control machines,...

Understand the OT Security and Its Importance

This article discusses OT security and why it is essential for protecting industrial systems from cyberattacks. We will also discuss common control objectives that can...

What is Deepfake, and how does it Affect Cybersecurity?

Producing deepfake is easy. It is hard to detect. They operate with a description of reality rather than reality itself (e.g., a video). Any...