[Info-vax] DCL vulnerability write up on The Register

Stephen Hoffman seaohveh at hoffmanlabs.invalid
Sun Feb 18 14:12:02 EST 2018


On 2018-02-18 15:39:05 +0000, neillclift at gmail.com said:

> This will be documented in internals and data structures I would expect.
> If you have code running in supervisor mode then you pick a privileged 
> image with a nice privilege using the install utility. Activate that 
> with $IMGACT and I seem to remember you have to fix it up with $IMGFIX 
> and then your code will have the privilege.

Getting from supervisor into a more privileged mode doesn't require a 
privileged image, though this particular exploit did use the path 
you've referenced from within a privileged image.


-- 
Pure Personal Opinion | HoffmanLabs LLC 




More information about the Info-vax mailing list