vulnerability of the "serialization" library in openOS
igorkll opened this issue · comments
igorkll commented
deserialization of such a string causes the computer to freeze for a couple of seconds: "{(function() while true do end end)()}"
since a closed loop increases energy consumption (as far as I understand from the documentation), you can send commands of this type to the robot to discharge its battery
finnaminope commented
ive tested this and it seems it can be used to attack some weak remote shell systems and other insecure systems using serialization lib