It seems the affected update file seems to have been over written with 0s on the 42kb file, whereas the before and after sys files have obfuscated ays/config file info as expected.
If it is simply caused by a corrupted file. That is a really bad signal. It means they don't even try to properly validate and parse the file before loading them into the KERNAL. Always validate input so it don't crash your program is almost the computer science 101 every programming class should tell you in the first class. And yet they still make this happen?
And in this case, it only crash. But if it somehow read value from position it isn't supposed to successfully? You have an RCE.
mmis1000|1 year ago
And in this case, it only crash. But if it somehow read value from position it isn't supposed to successfully? You have an RCE.