|
|
|
|
|
|
by roc
5231 days ago
|
|
|
The sandbox lessens the risk of said overflows. Instead of exploiting a flaw in an interpreter or file handling function and getting control of the entire machine, you'd only get control of the sandbox's context. The only way to parlay that into control of the system would be to break the sandbox. And then, because OS X default security is fairly sane, the only way to do real lasting damage is to use a further exploit to escalate your permissions. |
|
|
Also, I guess it depends on what the app does and what you mean by "real lasting damage".