Content deleted Content added
→Cat's paw: Added descriptions for how Cat's Paw might translate to an immersive simsense experience |
→Crash: Added a modern example of how crash programs can be used to subvert current hardware |
||
Line 267:
====Crash====
One thing hackers have learned about internet protocols is that the ability to force devices to reboot can be very beneficial. When running, it attempts to fill a targeted device with an exceptional amount of reboot-worthy errors, adding to the probability that hardware running this program will be able to cause a reboot on the target system. This may affect the entire system or a single vulnerable program with critical system access.
An example from the modern (2021) era is the discovery of the [[WebKit]] security bug affecting [[iPhone]] and [[MacOS]]. By making a user's [[Safari_(web_browser)|Safari]] browser crash repeatedly, and taking advantage of audio latency code, attackers can use the exploit to build arbitrary read/write primitives which can then be used to build a chain of further exploits. Often this results because a crash situation causes normal protections related to privileges or sandboxing to collapse in a disorganized state while the system recovers.
====Defuse====
| |||