"unauthenticated remote code execution" is a fairly standard term for this kind ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		rsc on April 2, 2024 \| parent \| context \| favorite \| on: Timeline of the xz open source attack "unauthenticated remote code execution" is a fairly standard term for this kind of access. (https://www.google.com/search?q=%22unauthenticated+remote+co...)

kevindamm on April 2, 2024 [–]

Fairly standard term for a kind of access similar to this, but the distinction is important.

Consider the impact if anybody else, not just this attacker, could have exploited it -- on the other hand, it may have been discovered sooner (had it also not been discovered by accident first).

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact