[0day] [exploit] Compromising a Linux desktop using. 6502 processor opcodes on the NES?!
Scary Beasts Security
NOVEMBER 14, 2016
The vulnerabilit(ies) 1: Lack of checking ROM size when mapping into 6502 memory and bank switching (Absent a CVE, you can uniquely identify this as CESA-2016-0001.) Example: if the 6502 CPU writes the value 10 to 0x5ff9, then the 6502 memory locations 0x9000 - 0x9fff will be backed by the bytes at index (10 * 4096) into the cartridge ROM.
Let's personalize your content