Hacker News new | past | comments | ask | show | jobs | submit login

I am very pleased to see people building upon my Lua bytecode research, and I wouldn't be surprised to see more applications with embedded Lua which are exploitable like this.



corsix explanation of the bug is here: https://gist.github.com/corsix/6575486

it is a very good write up. it was not too difficult to convert it to 64 bit.

i'm fairly sure the demo page on the lua website is vulnerable: http://www.lua.org/demo.html but lua-5.3 is a little different fro lua-5.1 so i don't have a working exploit for this. but they let you load bytecode.


nginx is the first thing that occurred to me?


Definitely, but Lua is specifically designed to be easily embeddable, it is used all over: https://sites.google.com/site/marbux/home/where-lua-is-used




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: