Safari first to fall in hacking contest

By
Safari first to fall in hacking contest

Safari was cracked by a hacker team in just five seconds at the Pwn2Own browser hacking contest. Google Chrome and Mozilla Firefox currently still standing...

Safari and Internet Explorer were the browsers to be taken down in the Pwn2Own hacking contest.

Held annually at the CanSecWest conference in Vancouver, the competition pits security researchers against browsers. This year, Microsoft's IE8, Apple's Safari, Mozilla's Firefox and Google's Chrome are all in the contest.

However, no researcher chose to take on Firefox, and the one that was expected to hack Chrome reportedly didn't show up.

The first browser to fall in the three-day hacking contest was Safari, running on 64-bit version of Mac OS X. It was cracked by a team from Vupen Security in five seconds - all the team had to do was point the browser at a site containing their malicious code to take advantage of a vulnerability in WebKit.

That flaw was yesterday fixed by Apple, but the patch came too late to make it into the browser for the contest.

The second browser to fall was IE8 running on a 64-bit version of Windows 7. It was hacked by researcher Stephen Fewer using a trio of vulnerabilities.

Both teams win a $15,000 prize plus the computer they were working on.

Chrome's part in the contest was to be different than the other browsers. It was initially not going to be included, but Google stumped up $20,000 for a prize - but only if hackers could crack the browser in the first day and escape Chrome's sandbox using a flaw in Google-written code.

For the second part of the contest, researchers will focus on smartphones.

This article originally appeared at pcpro.co.uk

Copyright © Alphr, Dennis Publishing
Tags:

Most Read Articles

Windows 10 Fall Creators Update: 10 of the best new features

Windows 10 Fall Creators Update: 10 of the best new features

Australia gets its own Humble Bundle

Australia gets its own Humble Bundle

Ask Graeme - What is the value of the NBN?

Ask Graeme - What is the value of the NBN?

Review: Synology DS718+ NAS

Review: Synology DS718+ NAS