If you have update access to APF authorized libraries then you could certainly write such a program, although a competent auditor would read you the riot act if he found out. Exploiting a program that follows the rules is harder.
-- Shmuel (Seymour J.) Metz http://mason.gmu.edu/~smetz3 ________________________________________ From: IBM Mainframe Discussion List <[email protected]> on behalf of Jeremy Nicoll <[email protected]> Sent: Monday, November 25, 2019 6:26 PM To: [email protected] Subject: Re: AUTHPGM in IKJTSOxx On Mon, 18 Nov 2019, at 19:35, Seymour J Metz wrote: > A program designed to run as a jobstep expects a parameter list whose > first word points to a halfword length field followed by a character > string of that length. The Initiator will always flag the first word > with an end-of-list bit. So if the program follows normal rules, you > can't pass it an address that way. Why can't the character string contain eg the eight character hex representation of a 4-byte address, which the program converts back to binary and tries to pass control to? -- Jeremy Nicoll - my opinions are my own. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
