HC's Capture the Flag website
CTF Contests
25C3-CTF
25C3-CTF final results
Advisory #29
From team WiiPhonies
New advisory by : Ge0rG
Affected service(s): vdspi
Severity [lmh] : high
===== Problem =====
By sending an ASCII BEL character, a root shell is spawned.
===== Impact =====
A complete system compromise is possible, including reading flags.
===== Fix =====
The shell access can be disabled by removing lines 52 and 53 from ui.adb
Rating
[2] yup.