undefined | Better HN

0 pointsstonepresto4y ago0 comments

They seemed to be sandboxed to some extent, the researchers mention a privesc which could either be user -> root and then accessing other users accounts, or it could be a sandbox escape through the hypervisor to the host and a pivot from there. Regardless, shouldn’t be possible.

You see the former with a lot of “online Python interpreter” sites.

0 comments

1 comments · 1 top-level

tyingq4y ago

It read somewhat like there was a separate DB with everyone's credentials in it and some api call to get your own credentials...with an unintended way to change the parameters from cred_get("me") to cred_get("arbitrary_account").

j / k navigate · click thread line to collapse