Sending a message to users that floats above everything

Bob Sneidar bobsneidar at iotecdigital.com
Wed Aug 23 18:57:12 EDT 2017


"Security Fix: A stack overflow vulnerability was found in nan* functions that could cause applications, which process long strings with the nan f" WHAT arbitrary code? Code that can run elevated? What does arbitrary mean? Just because you can get code to run, doesn't mean it can override security and sandboxing that is built in. And who actually exploited this vulnerability?

There has been a lot of security updates Apple has released because of this sort of thing. What I want to know is, Which exploits have been successfully released into the wild, have delivered their payload, and have "infected" a system without tricking the end user into clicking "OK" in a bogus dialog, or without the user even being aware it was happening. 

Bob S


> unction, to crash or, potentially, execute arbitrary code.On Aug 23, 2017, at 14:48 , J. Landman Gay via use-livecode <use-livecode at lists.runrev.com> wrote:
> 
> This one was spotted on Aug. 2 this year:
> 
> https://packetstormsecurity.com/files/os/osx/
> 
> -- 
> Jacqueline Landman Gay         |     jacque at hyperactivesw.com





More information about the Use-livecode mailing list