Skip to comments.The Pwn2Own trifecta: Safari, IE 8, and Firefox exploited on day 1
Posted on 03/25/2010 1:17:18 PM PDT by for-q-clinton
That didn't take long. One day into the Pwn2Own hacking competition at CanSecWest and already Apple, Microsoft, and Mozilla have been sent packing to their respective labs to work on security issues in their browsers. In a repeat performance, Charlie Miller pocketed a $5,000 cash prize and a fully-patched MacBook by splitting it wide, and gaining full control of the device after a user clicked on his malicious link. Another white-hatter by the name Nils (pictured) toppled Internet Explorer 8 running on a Windows 7 laptop -- again, the five grand and compromised VAIO P laptop are now his to keep as compensation for turning over the malicious code. So much for "protection that no other browser can match," eh Mr. Ballmer? Nils then demonstrated a second Safari exploit before hacking Firefox later in the afternoon netting him a cool $15k by the close of day one. Only Google's Chrome was left unscathed -- Opera isn't part of the contest. This year's contest will also offer a $10,000 prize for every vulnerability successfully exploited in Windows Mobile, Android, Symbian, and the iPhone and BlackBerry OSes. In other words: this contest that runs through Friday isn't over by any stretch.
Apple Heads in 3-2-1
An equal distribution of humble pie.
Chrome baby! - - I still don’t think I want it.
Firefox with NoScript should be good enough for the average user.
You think? I bet most stay away until they can try to refute and downplay this exploit.
With things like, but Windows has more vulnerabilities and no one would do what is required to get the safari exploit to work (like it requires pushing the right mouse button...and we all know Mac users are too dumb to know how to use a right mouse button). BTW: That was Steve Jobs position on a right mouse button for years.
Chrome was unavailable for testing because they made a last minute patch that would not have given the hackers an equal amount of preparation time as they had on the other browsers and nobody cares about Opera so nobody tried.
See what happens when you don’t read the article.
Maybe that’s a good case for using Opera? (Hackers not interested in spending the time to hack it.)
Doesn’t Chrome run off of WebKit?
If Safari was hacked, then likely Chrome would be too
Hahahaha...you are probly right.
A little off topic:
Has the Army of Northern Virginia started to reform yet?
"...and we all know Mac users are too dumb to know how to use a right mouse button). "
Your posting history reveals a common thread of baiting Mac users.
I need some vitriol in this thread!" You have good posts on politics. But your trolling on Macs is revolting.
Did you have to take a class to become such a jerkwad, crap-mouthed D-bag, or did it just come naturally?
You know, I wouldn't brag about needing two buttons to do what I can do with only one.
I see you are in 101 version of that class based on your attempt to trash talk. Let me know what you graduate because your current attempts to be cool at trashtalking and a jerkwad are too juvenile to warrant a decent response from me. You may want to engage Steve Jobs if you think my comment upset you about the right mouse button.
Then why did Mac add a 2nd mouse button? Either their users magically got a lot smarter or the OS had to evolve past something you can by at Toys R Us.
And by the way...thanks for trying to bringing some vitriol to the thread. But still not what is bound to eventually come once the Apple lovers get their commune to come together on an answer to these exploits. That’s when the good stuff will come.
Grab some popcorn...it should be fun to watch.
I once say a trash-talking tirade on this forum
that went on for pages.
It made me feel like such an inferior piker
“I see you are in 101 version of that class”
As I suspected, you overpaid for your lessons.
“You may want to engage Steve Jobs “
Engage THIS, troll.
The Mac / Windows / Google / etc. bashing
comments on this forum are pitifully derivative