After first finding this exploit i tested it a couple of times, what turns out is that it sometimes works and sometimes the “wait” or “close page” dialog box pops up, sometimes the stack exhaustion will still trigger after requesting to close the window and sometimes it just won’t work…
More+Fredrik and Mathias wrote in an earlier post today about possible vulnerabilities in the NIBE heat pumps, i am lucky a friend of mine has one so i could play around in it for some time.
More+We’ll start off simple with a short-description: “A heat pump is a machine or device that moves heat from one location (the ‘source’) to another location (the ‘sink’ or ‘heat sink’) using mechanical work. Most heat pump technology moves heat from a low temperature heat source to a higher temperature heat sink.
More+Well well, if you haven’t already, stop using Safari! This script is very simple and very critical, it causes an Access Violation exception in WebKit.dll, which several browsers are based upon. Luckily, Google Chrome is enough sandboxed and can not be exploited trough this vulnerability.
More+The PDF version can be found here This paper will show a new way to get local root escalation through the creation of flag looking filenames and letting privileged processes use them as arguments.
More+