At this year’s Pwn2Own conference, security firms and enthusiasts are doing there very best to discover and deploy exploits to some of the world’s most popular browsers including Chrome, Firefox, Safari and Microsoft's Internet Explorer 8 (IE8).
Safari fared the worst of any of the browsers. A French security research firm named Vulpen managed to break into Safari running on a MacBook Air in a cool five seconds. The company noted that the Safari update issued by Apple yesterday — version 5.0.4 — fixes some of the vulnerabilities, but not all. The takedown of Safari 5.0.3 used exploits that are still available in the updated code base.
IE8 didn't fare much better. It was taken down by Stephen Fewer, who used three separate vulnerabilities to get out of Protected Mode and crack that browser's best locks.
Google's Chrome and Firefox are still standing and Google has stated they will pay $20,000 to any team or individual who could successfully hack Chrome. To fair we do have to mention that only two teams signed up for the Chrome challenge and one team didn't show and while the other chose to work on Blackberry exploits instead.
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.