Comment Re:Useless (Score 1) 139
All you need to use monte-mips to gain access to a particular TiVo software release is any past or present TiVo release with a vulnerability -- it doesn't even have to be the same version that your TiVo is now running.
All existing S2 boxes have at least one software release with the BASH_ENV vulnerability. You just need to get that release installed on the alternate partition, along with monte-mips. Then from now on, boot from the alternate partition and use the BASH_ENV vulnerability to launch the desired release installed on your other partition (but use monte-mips to do this without loading TiVo's initrd image).
This works even if the vulnerable version is 3.x and you're launching into a 4.x version of TiVo software.
All existing S2 boxes have at least one software release with the BASH_ENV vulnerability. You just need to get that release installed on the alternate partition, along with monte-mips. Then from now on, boot from the alternate partition and use the BASH_ENV vulnerability to launch the desired release installed on your other partition (but use monte-mips to do this without loading TiVo's initrd image).
This works even if the vulnerable version is 3.x and you're launching into a 4.x version of TiVo software.
