Linked by Thom Holwerda on Thu 19th Mar 2009 06:44 UTC, submitted by Moulinneuf
Privacy, Security, Encryption As he had already predicted, cracker Charlie Miller has won the PWN2OWN contest by cracking Safari and Mac OS X within seconds of the start of the competition. "It took a couple of seconds. They clicked on the link and I took control of the machine," Miller said after his accomplishment. He took home the USD 10000 prize, as well as the MacBook he performed the exploit on. Internet Explorer 8 fell a while later by cracker Nils, who also cracked Safari and Firefox after being done with IE8.
Thread beginning with comment 353880
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE[3]: Comment by Hakime
by Soulbender on Thu 19th Mar 2009 11:40 UTC in reply to "RE[2]: Comment by Hakime"
Soulbender
Member since:
2005-08-18

He went out of his way to test the exploit before the contest to make sure it would work every time.


Well, it's quite possible the other guys had also prepared for the browsers they worked on.

That being said, I'd truly love to know exactly what control over the machine he had as a result of that, as the ZDNet article is rather vague beyond stating that.


Yeah, I was also wondering how he got control over the machine from the browser. Running code, sure, but that would still only be under the user account.
Then again, having "root" isn't what most malware is interested in anyway.

but it can still at least be very damaging to that user's accounts.


Aside from not being able to change system files and configurations it can still be quite damaging. You can still run botnets from a user account, for example.

Edited 2009-03-19 11:42 UTC

Reply Parent Score: 5

RE[4]: Comment by Hakime
by sakeniwefu on Thu 19th Mar 2009 15:27 in reply to "RE[3]: Comment by Hakime"
sakeniwefu Member since:
2008-02-26


Well, it's quite possible the other guys had also prepared for the browsers they worked on.


All of them had. The ones that didn't win didn't have any good exploit or had one but a recent patch had fixed it.

Nobody can find and exploit a bug in minutes, or even hours unless the bug is very noobish and can be found easily.

It's not 1983 anymore.

I am sincerely surprised by IE8/Win7 both falling. While IE8 was bound to be broken as any other browser, I thought IE in windows Vista+ ran in sandbox mode, or is that something you have to enable?

Maybe the sandbox isn't sandproof?

Reply Parent Score: 3

RE[5]: Comment by Hakime
by PlatformAgnostic on Thu 19th Mar 2009 20:10 in reply to "RE[4]: Comment by Hakime"
PlatformAgnostic Member since:
2006-01-02

It depends on the contest requirements. The IE Protected Mode allows reads (but not writes).

Reply Parent Score: 2