Reply to thread If I've got this straight, an attacker would have to find a specific bug in the device's programs: - a null pointer under reproducible conditions - before a STM, or better still, a looping store - and where arbitrary data can be inserted And then be able to force a reset or execute some other vector. And for it to work the device mustn't: allow writes to zero page, or use ROM directly (or flash-ROM which isn't directly writable), or put its vector table elsewhere. I'd have thought finding other security bugs might be easier. Loris on 25/4/07 7:43PM [ Reply | Permalink | Report ] Please login before posting a comment. Use the form on the right to do so or create a free account.

Search the archives Today's featured article South East 2008 show round up News from the event in the south of the UK  42 comments, latest by diomus on 9/11/08 8:45PM. Published: 19 Oct 2008 Random article News in brief South East show, Cybervillage plans plus software news  25 comments, latest by SkyPilot on 12/8/05 5:35PM. Published: 8 Aug 2005 Useful links News and media: Iconbar • MyRISCOS • ArcSite • RISCOScode • ANS • C.S.A.Announce • Archive • Qercus • RiscWorld • Drag'n'Drop • GAG-News Top developers: RISCOS Ltd • RISC OS Open • MW Software • R-Comp • Advantage Six • VirtualAcorn Dealers: CJE Micros • APDL • Castle • a4 • X-Ample • Liquid Silicon • Webmonster Usergroups: WROCC • RONE • NKACC • IRUG • SASAUG • ROUGOL • RONWUG • MUG • WAUG • GAG • RISCOS.be Useful: RISCOS.org.uk • RISCOS.org • RISCOS.info • Filebase • Chris Why's Acorn/RISC OS collection • NetSurf Non-RISC OS: The Register • The Inquirer • Apple Insider • BBC News • Sky News • Google News • xkcd • diodesign

© 1999-2009 The Drobe Team. Some rights reserved, click here for more information
Powered by MiniDrobeCMS, based on J4U | Statistics
"An increasing number of Drobe articles don't relate to RISC OS. Who cares if the Finn brothers sell Sibelius to a bunch of yanks"
Page generated in 0.0198 seconds.