this post was submitted on 06 Apr 2024
13 points (93.3% liked)

Security

522 readers
6 users here now

A community for discussion about cybersecurity, hacking, cybersecurity news, exploits, bounties etc.

Rules :

  1. All instance-wide rules apply.
  2. Keep it totally legal.
  3. Remember the human, be civil.
  4. Be helpful, don't be rude.

Icon base by Delapouite under CC BY 3.0 with modifications to add a gradient

founded 1 year ago
MODERATORS
[email protected]
13
Galactical Bug Hunting: How we discovered new issues in CD Projekt Red’s Gaming Platform (www.anvilsecure.com)
submitted 7 months ago by testeronious to c/[email protected]
1 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 0 points 7 months ago

As soon as they mentioned FixDirPrivileges as a command sent over IPC to a privileges process, I knew it was over. Being able to give read-write access to "Everybody" simply by sending a command is asking for trouble. They might've even taken the long route of creating a DLL that the privileged process loads. Is it no possible to replace the privileged process altogether with any random binary?

Anti Commercial AI thingyCC BY-NC-SA 4.0