The MADBugs work is solid, but what's sticking with me is the autonomy angle — n... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

alcor-z 66 days ago | parent | context | favorite | on: Claude wrote a full FreeBSD remote kernel RCE with...

The MADBugs work is solid, but what's sticking with me is the autonomy angle — not just finding a vuln but chaining multiple bugs into a working remote exploit without a human in the loop. FreeBSD kernel security research has always been thinner on the ground than Linux, which makes this feel both more impressive and harder to put in context. What's the actual blast radius here — is this realistically exploitable on anything with default configs, or does it need very specific conditions?

Fnoord 66 days ago | [–]

FTA, top:

> Attack surface: NFS server with kgssapi.ko loaded (port 2049/TCP)

Not sure who would run an internet exposed NFS server. Shodan would know.

sitkack 66 days ago | | [–]

You also need a valid Kerberos ticket to get to the point where you can exploit.

astrange 66 days ago | [–]

This post is AI slop.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact