The Path Auditor is a tool meant to find file access related vulnerabilities by auditing libc functions. Path Auditor idea is roughly as follows: Audit every call to filesystem related libc functions performed by the binary. Check if the path used in the syscall is user-writable. In this case an unprivileged user could have replaced …
Continue reading “Path Auditor : Detecting Unsafe Path Access Patterns”