I'm not expert in these matters, but how would someone go about finding this exploit if they DIDNT have access to the source code (i.e. grep -R strcpy *). To me, this seems almost impossible to figure out without source code access, but clearly people find stuff in closed source code. How?
Most Read
-
Flash in the pan: Raspberry Pi OS is the latest platform to carve out vulnerable tech
-
Quixotic Californian crusade to officially recognize the hellabyte and hellagram is going hella nowhere
-
Pirate Bay co-founder criticises Parler for its lack of resilience
-
Attack of the cryptidiots: One wants Bitcoin-flush hard drive he threw out in 2013 back, the other lost USB stick password
-
The Novell NetWare box keeps rebooting over and over again yet no one has touched it? We're going on a stakeout
SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER
MORE CONTENT
SITUATION PUBLISHING
The Register - Independent news and views for the tech community. Part of Situation Publishing
Biting the hand that feeds IT © 1998–2021