tags:glitchinglpelinuxkernel original link: Can You Get Root With Only a Cigarette Lighter? newsletter link: exploits.club Weekly Newsletter 42 - Glitching With A Lighter, Pixel 9 Baseband Security, Node.js Pipe Madness, And More
Exploits Club Summary:
It doesnât seem too far fetched to say Hollywood would film a âhackingâ scene where the rebellious, cig-smoking main character demonstrates his technical prowess with nothing more than his lighter, before saying âI have root accessâ. And while we werenât in the room with @David3141593 when he pulled this off, we certainly hope thats how it went down. In this new post, Dave walks through his recent research into EMFI fault injection with a cigarette lighter coupled to an inductor. The post starts with showing how this tool can be used to flip bits and cause corruptions during read/write operations with a demonstrative CPython program. After that, Dave takes to an old Linux laptop and is able to achieve LPE by using a Rowhammer-esc exploit strategy. By flipping during a level 0-PTE read, he finds a way to effectively give himself physical arbitrary read/write.