Hacker News new | ask | show | jobs
by AJRF 1864 days ago
I was just thinking the other day that searching for TODO is probably a very good way to search a project for potential bugs or security issues. E.g; I see a bunch of todos in Firebase iOS SDK that look kind of interesting to an attacker. Without looking into how the methods are called I can't say if they are actually exploitable (and I am sure Firebase is fuzzed to high-hell) but it was a little seed planted in my head.
2 comments
_kbh_ 1864 days ago
for a great example of this just have a look at the following macOS privesc the source of which came with the handy comment "deal with OOB".

https://blog.zecops.com/research/from-a-comment-to-a-cve-con...

link
lucb1e 1863 days ago
Am security tester. Can confirm.

Sometimes the vulnerabilities are just handed to you on a dark-themed platter and I don't look them in the mouth.

link