Y
Hacker News
new
|
ask
|
show
|
jobs
by
NateLawson
1380 days ago
A semi-legit app can later drop malicious code and run it. Think of a repackaged OSS project or pirated software that has an auto-updater built in.
1 comments
lalopalota
1380 days ago
which would be a new file, or one that has been modified since it was last run. which would be handled by the first run protection.
link
cma
1380 days ago
Browsers can generate machine code and make it executable (for e.g. V8), and so can any other app. So they could download it and put it into newly allocated executable memory pages.
link