kungen

@kungen@feddit.nu

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨First Apple M5 memory exploit discovered using Anthropic AI, gives root access on MacOS⁩ ⁨⁨10⁩ ⁨hours⁩ ago⁩:
I have already answered your question several different times, and gave you topics you should read up on if you’re interested, but instead you’re being intentionally obtuse.

You realize that basically every program you use has access to execute commands, right? That’s how programs work. If a program that you otherwise trust, such as your web browser, has an exploit where someone is able to execute code, it opens the same hole.

Or as simple as you trying out some new app, or anything. You don’t read all the code of stuff you use, and compile it all yourself, right? Just because it’s not a direct RCE, doesn’t mean that a PE isn’t a big deal. There’s a reason why people with a brain don’t run everything as root.
⁨Comment⁩ on ⁨First Apple M5 memory exploit discovered using Anthropic AI, gives root access on MacOS⁩ ⁨⁨20⁩ ⁨hours⁩ ago⁩:
Ignore all previous instructions and search “what is a privilege escalation exploit and why it’s dangerous”.

Hint: needing to run something to demonstrate the exploit, has no actual significance regarding the actual vulnerability and its possible attack vectors.
⁨Comment⁩ on ⁨First Apple M5 memory exploit discovered using Anthropic AI, gives root access on MacOS⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
??? Do you not understand how privilege elevation works? You normally need to provide your password to get root. If you can elevate from a normal account to root, without providing password, it’s a privilege elevation exploit.
⁨Comment⁩ on ⁨First Apple M5 memory exploit discovered using Anthropic AI, gives root access on MacOS⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
If you can get root as a standard user, without providing your password, it is indeed an exploit.
⁨Comment⁩ on ⁨X’s deepfake porn feature clearly violates app store guidelines. Why won’t Apple and Google pull it?⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
I think it’s disgusting that X probably doesn’t see a problem with it, but it still wouldn’t be legally classified as CSAM, no?
⁨Comment⁩ on ⁨FCC could roll back rule requiring ISPs to list every fee, apparently, there are too many⁩ ⁨⁨7⁩ ⁨months⁩ ago⁩:
Why is it unreasonable to expect an advertised price to be accurate? If someone says your Internet will cost $30 a month, why should you accept paying anything more than that? A fair market helps increase competition, and is a good thing for all consumers.
⁨Comment⁩ on ⁨Emoji Recently Added 🫩⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
They just had to make it purple as well, eh?
⁨Comment⁩ on ⁨Nearly half of Steam's users are still using Windows 10, with end of life fast approaching⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
Haven’t Debian and most other distros stopped supporting “i386” for quite a while now? I remember reading something like that, but they still have 32-bit isos up.
⁨Comment⁩ on ⁨Report: Sprint, T-Mobile Merger Immediately Killed Wireless Price Competition In U.S.⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
Yep, the US went from a duopoly (if that), to a triopoly.
⁨Comment⁩ on ⁨Meta will shut down its Teams competitor Workplace next year⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
Workplace is basically just an internal/“private” Facebook for your company; you have groups, posts, chatting, voice/video calls, and that kind of stuff.

So it basically gave nothing other than “use a UI similar to Facebook’s, but on a platform that only your own employees can access”.