Documentation - V-215329

V-215329

IBM AIX 7.x Security Technical Implementation Guide

CAT II

Title

The AIX ldd command must be disabled.

Description

<VulnDiscussion>The ldd command provides a list of dependent libraries needed by a given binary, which is useful for troubleshooting software. Instead of parsing the binary file, some ldd implementations invoke the program with a special environment variable set, which causes the system dynamic linker to display the list of libraries. Specially crafted binaries can specify an alternate dynamic linker which may cause a program to be executed instead of examined. If the program is from an untruste...

Fix Text (Documentation Requirement)

Disable the "ldd" command by removing its permissions using command: # chmod 0000 <path to ldd>

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel