The ldd utility, commonly used by programmers and system administrators, is more vulnerable than it appears. In this article, the author uncovers a way to create an executable that can run arbitrary code when examined by ldd. They also present a social engineering scenario to trick a sysadmin into unknowingly handing over their privileges. The author admits that this vulnerability is largely undocumented and questions how it went unnoticed for so long. The article includes examples that show how ldd works and explains that it is actually a bash script. They also provide instructions on how to create and link an executable with a different loader to execute arbitrary code. The author emphasizes the need for caution and warns against running ldd on unknown executables.
https://catonmat.net/ldd-arbitrary-code-execution