Hacker News new | ask | show | jobs
by therealdrag0 2344 days ago
This sort of thing blows my mind.

Any rough theories on how this sort of thing can happen? How can an app go from parsing metadata to executing foreign code?
1 comments
rossjudson 2344 days ago
It's called C. It's incredibly hard to write secure code in it.
link
earenndil 2344 days ago
I thought whatsapp was erlang?
link
hooch 2344 days ago
I don’t imagine there being much Erlang in the iOS and Android clients.
link
ghostpepper 2344 days ago
Is there any C in WhatsApp?
link
londons_explore 2344 days ago
Yes - all the media decoders are in C
link
ghostpepper 2344 days ago
Cool, that actually does sound like a rather large attack surface for an innocent-looking attachment to wind up executing code
link