stf on Nostr: nprofile1q…zaakv a few years ago our company audited iterm2 and made the news with ...
nprofile1qy2hwumn8ghj7un9d3shjtnddaehgu3wwp6kyqpqv8r5uyz9h7nc54j6qtktsf7v5g8mune4ye5h298qfgu0cjyq89vs2zaakv (nprofile…aakv) a few years ago our company audited iterm2 and made the news with some RCE found in it. when i heard we audit it, i was ignorant and thought: how boring what attack surface can a terminal have besides a few ANSI sequences, if at all?
little did i know. then i learned about all the features that iterm2 has. and my mind boggles, wtf? why? iterm2 is like the winner of the 100km^2 attack surface enlargement olympics. no wonder there is something like this every year.
little did i know. then i learned about all the features that iterm2 has. and my mind boggles, wtf? why? iterm2 is like the winner of the 100km^2 attack surface enlargement olympics. no wonder there is something like this every year.