1. 11
  1.  

  2. 1

    This is more about ROP in general than arm32, but does anyone know if using system() vs. execve and friends makes ROP a little easier, or at least an order of magnitude more easy?

    Also, this is the sort of thing mitigated by a mandactory access control policy as long as you don’t allow shell access in the application profile.