Codex Hacked a Samsung TV
4 hours ago
- #Samsung TV Security
- #AI Hacking
- #Privilege Escalation
- AI (Codex) successfully escalated privileges from a browser shell to root on a Samsung TV, demonstrating the potential of AI in hardware hacking.
- The setup included a browser foothold, a controller host, a shell listener, matching firmware source, execution constraints (UEP), and a memfd wrapper.
- Codex identified a vulnerability in the ntk* device nodes (ntkhdma, ntksys, ntkxdma), allowing a physmap primitive for arbitrary physical memory access.
- The exploit involved scanning physical memory for the browser's credentials (uid, gid) and overwriting them to achieve root access, without kernel code execution.
- Human intervention was needed at times to guide Codex, highlighting the importance of interactive collaboration in AI-driven security research.