Overclock.net › Forums › Industry News › Software News › [ZDnet] Safari/MacBook first to fall at Pwn2Own 2011
New Posts  All Forums:Forum Nav:

[ZDnet] Safari/MacBook first to fall at Pwn2Own 2011 - Page 3

post #21 of 56
Quote:
Safari 5.0.3 on fully-patched Mac OS X 10.6.6. French security firm VUPEN was first to attack the browser, and five seconds after the browser visited its specially-crafted malicious web page, it had both launched the platform calculator application (a standard harmless payload to demonstrate that arbitrary code has been executed) and wrote a file to the hard disk (to demonstrate that the sandbox had been bypassed).
I was reading it yesterday here: http://arstechnica.com/security/news...challenged.ars
legobox
(13 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom II X3 720 Biostar ATI Radeon HD 4670 G.Skill 
Hard DriveOptical DriveOSMonitor
500GB Seagate LG Windows 7 Ultimate 64-bit Acer 
KeyboardPowerMouse
Digital Media Keyboard 3000 Antec NeoPower 550 550W Logitech G5 
  hide details  
Reply
legobox
(13 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom II X3 720 Biostar ATI Radeon HD 4670 G.Skill 
Hard DriveOptical DriveOSMonitor
500GB Seagate LG Windows 7 Ultimate 64-bit Acer 
KeyboardPowerMouse
Digital Media Keyboard 3000 Antec NeoPower 550 550W Logitech G5 
  hide details  
Reply
post #22 of 56
It was hacked in 5 seconds by a highly skilled 3 man team that spent 3 weeks just on this one flaw, wrote the code to exploite it successfully. So when you talk like that it makes it sound easy.
post #23 of 56
LOL. The comments on that page caused me to have hemorrhaging. Since when does Apple == FOSS? People are really stupid sometimes.

And seriously? Macs being the first to be broken 5 years in a row? Wow.
     
CPUGraphicsRAMHard Drive
Intel Core m3-6Y30 Intel HD515 8GB 1866DDR3L Micron M600 MTFDDAV256MBF M.2, 256 GB 
CoolingOSOSMonitor
Fanless Win10 Home x64 Kubuntu 16.04 (requires Linux kernel 4.5/4.6) 13.3 inch 16:9, 1920x1080 pixel, AU Optronics A... 
CPUMotherboardGraphicsRAM
AthlonIIX4 640 3.62GHz (250x14.5) 2.5GHz NB Asus M4A785TD-M EVO MSI GTX275 (Stock 666) 8GBs of GSkill 1600 
RAMHard DriveHard DriveHard Drive
4GBs of Adata 1333 Kingston HyperX 3k 120GB WD Caviar Black 500GB Hitachi Deskstar 1TB 
Optical DriveCoolingOSOS
LG 8X BDR (WHL08S20) Cooler Master Hyper 212+ Kubuntu x64 Windows 7 x64 
OSMonitorPowerCase
Bodhi Linux x64 Acer G215H (1920x1080) Seasonic 520 HAF912 
CPUMotherboardGraphicsRAM
N450 1.8GHz AC and 1.66GHz batt ASUS proprietary for 1001P GMA3150 (can play bluray now!?) 1GB DDR2 
Hard DriveOptical DriveOSOS
160GB LGLHDLBDRE32X Bodhi Linux Fedora LXDE 
OSOSMonitorKeyboard
Kubuntu SLAX 1280x600 + Dell 15inch Excellent! 
PowerCase
6 cells=6-12hrs and a charger 1001P MU17 Black 
  hide details  
Reply
     
CPUGraphicsRAMHard Drive
Intel Core m3-6Y30 Intel HD515 8GB 1866DDR3L Micron M600 MTFDDAV256MBF M.2, 256 GB 
CoolingOSOSMonitor
Fanless Win10 Home x64 Kubuntu 16.04 (requires Linux kernel 4.5/4.6) 13.3 inch 16:9, 1920x1080 pixel, AU Optronics A... 
CPUMotherboardGraphicsRAM
AthlonIIX4 640 3.62GHz (250x14.5) 2.5GHz NB Asus M4A785TD-M EVO MSI GTX275 (Stock 666) 8GBs of GSkill 1600 
RAMHard DriveHard DriveHard Drive
4GBs of Adata 1333 Kingston HyperX 3k 120GB WD Caviar Black 500GB Hitachi Deskstar 1TB 
Optical DriveCoolingOSOS
LG 8X BDR (WHL08S20) Cooler Master Hyper 212+ Kubuntu x64 Windows 7 x64 
OSMonitorPowerCase
Bodhi Linux x64 Acer G215H (1920x1080) Seasonic 520 HAF912 
CPUMotherboardGraphicsRAM
N450 1.8GHz AC and 1.66GHz batt ASUS proprietary for 1001P GMA3150 (can play bluray now!?) 1GB DDR2 
Hard DriveOptical DriveOSOS
160GB LGLHDLBDRE32X Bodhi Linux Fedora LXDE 
OSOSMonitorKeyboard
Kubuntu SLAX 1280x600 + Dell 15inch Excellent! 
PowerCase
6 cells=6-12hrs and a charger 1001P MU17 Black 
  hide details  
Reply
post #24 of 56
Does being able to open a program really prove they have "full control" as so many of you state? I'm not going to argue that the system was compromised, but to what extent?

There are different levels of user permissions, so I would wager that because you can open an instance of calc doesn't necessarily mean that you could run whatever code you intended to, not in the same manner anyway.

If the browser was running with administrators privileges, that's a different matter.
Edited by RonindeBeatrice - 3/10/11 at 9:25am
    
CPUMotherboardGraphicsRAM
Xeon E5645 Asus Rampage II Gene eVGA GTX460 SSC 3x4GB Corsair Dominator PC3-12800 
Hard DriveHard DriveHard DriveOS
Crucial C300 64GB Seagate Momentus XT 750 Western Digital GP 2TB EARS Windows 7 Premium 
MonitorKeyboardPowerCase
Asus VE278Q DSI SMK-88 Seasonic X-660 Lian Li U6B 2011 SE 
MouseMouse Pad
Logitech G500 KAI.g3 HIEN - HARD 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Xeon E5645 Asus Rampage II Gene eVGA GTX460 SSC 3x4GB Corsair Dominator PC3-12800 
Hard DriveHard DriveHard DriveOS
Crucial C300 64GB Seagate Momentus XT 750 Western Digital GP 2TB EARS Windows 7 Premium 
MonitorKeyboardPowerCase
Asus VE278Q DSI SMK-88 Seasonic X-660 Lian Li U6B 2011 SE 
MouseMouse Pad
Logitech G500 KAI.g3 HIEN - HARD 
  hide details  
Reply
post #25 of 56
Quote:
Originally Posted by Muftobration View Post
Do you mean because macs have a reputation for hiding complexity under a nice interface? I wouldn't say this is ironic. One of my friends at school here is the head of the computer security club, which is involved in these types of competitions, and he uses a macbook.
Puny Power!
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 860 [4.0GHz @ 1.34v] Asus Maximus III Gene GTX 460 SE 12 GB GSkill ECO 1600 CL7 
Hard DriveOSMonitorKeyboard
Seagate Barracuda 1.5 TB, Intel 120GB 520 Windows 7 Ultimate 64 LG Flatron 22' & LG Flatron 21' Logitech G15 
PowerCaseMouse
Cougar CMX 750 NZXT Vulcan Microsoft Optical 
  hide details  
Reply
Puny Power!
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 860 [4.0GHz @ 1.34v] Asus Maximus III Gene GTX 460 SE 12 GB GSkill ECO 1600 CL7 
Hard DriveOSMonitorKeyboard
Seagate Barracuda 1.5 TB, Intel 120GB 520 Windows 7 Ultimate 64 LG Flatron 22' & LG Flatron 21' Logitech G15 
PowerCaseMouse
Cougar CMX 750 NZXT Vulcan Microsoft Optical 
  hide details  
Reply
post #26 of 56
Fuzz testing is really hit or miss. I think that most OSs now and days are largely secure. Sure, OSX was first to fall but I don't think anyone could say that finding these exploits is trivial.
    
CPUMotherboardGraphicsRAM
Intel Core i7 920 @ 4Ghz Rampage II GENE PNY GTX 680 G.Skill Sniper (12GB) 
Hard DriveOptical DriveCoolingOS
Seagate Momentus XT SATA Optical Drive Kuhler 920 Windows 7 Ultimate 
MonitorKeyboardPowerCase
Dell U2410 Logitech G11  Silverstone ST75 750W Antec Mini P180B 
MouseMouse PadOther
Logitech MX518 Steelpad G19 Gaming Headset 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel Core i7 920 @ 4Ghz Rampage II GENE PNY GTX 680 G.Skill Sniper (12GB) 
Hard DriveOptical DriveCoolingOS
Seagate Momentus XT SATA Optical Drive Kuhler 920 Windows 7 Ultimate 
MonitorKeyboardPowerCase
Dell U2410 Logitech G11  Silverstone ST75 750W Antec Mini P180B 
MouseMouse PadOther
Logitech MX518 Steelpad G19 Gaming Headset 
  hide details  
Reply
post #27 of 56
Quote:
Originally Posted by Maelthras View Post
It was hacked in 5 seconds by a highly skilled 3 man team that spent 3 weeks just on this one flaw, wrote the code to exploite it successfully. So when you talk like that it makes it sound easy.
Maybe if you're 12? Doesn't sound "easy" to anyone who has half a brain and knows what they're actually referring to.

Quote:
Originally Posted by RonindeBeatrice View Post
Does being able to open a program really prove they have "full control" as so many of you state? I'm not going to argue that the system was compromised, but to what extent?
"Using the target machine, he clicked on a link and immediately launched the calculator app (calc.exe). He was also required to write to a file to prove that he got out of the low integrity mode. This proved that he got full user access to the hijackedmachine. "

Pretty sure seeing they had read/write access, they could probably write their own code and execute it so I don't see how you could try to argue that.

Quote:
Originally Posted by oregonducks45 View Post
i agree but it seems weak... why not install a program then run it?
I gave myself a headache trying to figure out whether you're trolling or not.

I'd feel horrible for saying these things to someone like "you" if it turns out you're not trolling so I shall pass.
    
CPUMotherboardGraphicsRAM
AMD Athlon x2 4800+ Asus M2N-E 4850 512mb (680/1050) 2gbx1gb Mushkin, 2x1gb Patriot 
Hard DriveOptical DriveOSKeyboard
Seagate 7200.12 1TB x2 TS-H352 Windows 7 Home x64 Saitek Eclipse 
PowerCaseMouse
Rocketfish 550w NZXT Gamma Logitech G5 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
AMD Athlon x2 4800+ Asus M2N-E 4850 512mb (680/1050) 2gbx1gb Mushkin, 2x1gb Patriot 
Hard DriveOptical DriveOSKeyboard
Seagate 7200.12 1TB x2 TS-H352 Windows 7 Home x64 Saitek Eclipse 
PowerCaseMouse
Rocketfish 550w NZXT Gamma Logitech G5 
  hide details  
Reply
post #28 of 56
LMAO, it was the easiest browser to crack, and then the winner won a computer running the exact same software that was so easy to crack... Reward the hacker of least secure software the least secure software... Ahh, the irony.
     
CPUMotherboardGraphicsRAM
i7 3820 WC'd ASRock Fatal1ty X79 Professional Sapphire + Gigabyte R9 290X CF WC'd 16GB G. Skill Ripjaws Z 
Hard DriveHard DriveOptical DriveCooling
2x 3TB Seagate Barracuda 7200.14 RAID 1 2x 250GB Samsung 840 Series SSD RAID 1 Samsung Burner w/ Lightscribe Custom Watercooling 
OSMonitorKeyboardPower
Windows 10 Professional 64-bit LG 34UC88 (3440x1440) + Crossover 27Q 1440p Roccat Ryos MK Pro Cherry MX Brown Cooler Master Silent Pro 1200W Gold 
CaseMouseMouse PadAudio
Cooler Master HAF 922 w/ Dust Filters Roccat Kone XTD + Roccat Apuri 2x XFX Warpad ODAC > Glow Amp One > K702/65 
AudioOther
Yamaha Receiver + 5.1 Xbox One Wireless Controller 
CPUMotherboardGraphicsRAM
Intel Core i5 540M @ 3.33Ghz DC 3.65Ghz SC Acer Intel HD 3000 + ATi Radeon HD 5650M Switchable 4GB 
Hard DriveOSMonitorMouse
OCZ Vertex 2 SSD Windows 7 Ultimate SP1 x64 13.3" 1366x768 G700 
Audio
iBasso D-Zero Headphone AMP + DAC 
  hide details  
Reply
     
CPUMotherboardGraphicsRAM
i7 3820 WC'd ASRock Fatal1ty X79 Professional Sapphire + Gigabyte R9 290X CF WC'd 16GB G. Skill Ripjaws Z 
Hard DriveHard DriveOptical DriveCooling
2x 3TB Seagate Barracuda 7200.14 RAID 1 2x 250GB Samsung 840 Series SSD RAID 1 Samsung Burner w/ Lightscribe Custom Watercooling 
OSMonitorKeyboardPower
Windows 10 Professional 64-bit LG 34UC88 (3440x1440) + Crossover 27Q 1440p Roccat Ryos MK Pro Cherry MX Brown Cooler Master Silent Pro 1200W Gold 
CaseMouseMouse PadAudio
Cooler Master HAF 922 w/ Dust Filters Roccat Kone XTD + Roccat Apuri 2x XFX Warpad ODAC > Glow Amp One > K702/65 
AudioOther
Yamaha Receiver + 5.1 Xbox One Wireless Controller 
CPUMotherboardGraphicsRAM
Intel Core i5 540M @ 3.33Ghz DC 3.65Ghz SC Acer Intel HD 3000 + ATi Radeon HD 5650M Switchable 4GB 
Hard DriveOSMonitorMouse
OCZ Vertex 2 SSD Windows 7 Ultimate SP1 x64 13.3" 1366x768 G700 
Audio
iBasso D-Zero Headphone AMP + DAC 
  hide details  
Reply
post #29 of 56
Quote:
Originally Posted by Peroxide View Post
Maybe if you're 12? Doesn't sound "easy" to anyone who has half a brain and knows what they're actually referring to.



"Using the target machine, he clicked on a link and immediately launched the calculator app (calc.exe). He was also required to write to a file to prove that he got out of the low integrity mode. This proved that he got full user access to the hijackedmachine. "

Pretty sure seeing they had read/write access, they could probably write their own code and execute it so I don't see how you could try to argue that.



I gave myself a headache trying to figure out whether you're trolling or not.

I'd feel horrible for saying these things to someone like "you" if it turns out you're not trolling so I shall pass.
My mother can create a document under her profile, she can delete it, she can run an application from there. Does she have full control of the machine?
    
CPUMotherboardGraphicsRAM
Xeon E5645 Asus Rampage II Gene eVGA GTX460 SSC 3x4GB Corsair Dominator PC3-12800 
Hard DriveHard DriveHard DriveOS
Crucial C300 64GB Seagate Momentus XT 750 Western Digital GP 2TB EARS Windows 7 Premium 
MonitorKeyboardPowerCase
Asus VE278Q DSI SMK-88 Seasonic X-660 Lian Li U6B 2011 SE 
MouseMouse Pad
Logitech G500 KAI.g3 HIEN - HARD 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Xeon E5645 Asus Rampage II Gene eVGA GTX460 SSC 3x4GB Corsair Dominator PC3-12800 
Hard DriveHard DriveHard DriveOS
Crucial C300 64GB Seagate Momentus XT 750 Western Digital GP 2TB EARS Windows 7 Premium 
MonitorKeyboardPowerCase
Asus VE278Q DSI SMK-88 Seasonic X-660 Lian Li U6B 2011 SE 
MouseMouse Pad
Logitech G500 KAI.g3 HIEN - HARD 
  hide details  
Reply
post #30 of 56
Apple, come on. Your stuff is so insecure that it's falling consistently at these contests for years. Get on the ball, will ya?
Quote:
Originally Posted by RonindeBeatrice View Post
Does being able to open a program really prove they have "full control" as so many of you state? I'm not going to argue that the system was compromised, but to what extent?

There are different levels of user permissions, so I would wager that because you can open an instance of calc doesn't necessarily mean that you could run whatever code you intended to, not in the same manner anyway.

If the browser was running with administrators privileges, that's a different matter.

...Do you honestly think the typical Apple user is going to even know what admin privvies do to security, let alone why they shouldn't visit suspect sites while using them?


FWIW I've been using admin privvies in unpatched installations of Windows for years and haven't gotten anything. Security is 75-80% the user. A 'secure' computer with a moron at the keyboard is going to catch every piece of malware on the internet, while an unsecure one like my own will never catch anything more than a tracking cookie if it's used by someone with more than five IQ points and some common sense.
Boot to the Head!
(13 items)
 
  
CPUMotherboardGraphicsRAM
Athlon64 X2 4200+ @ stock Epox 9NPA+SLI XFX 8800GS 384 4x1GB G.Skill DDR400 @ stock 
Hard DriveOptical DriveOSMonitor
120GB WD + 1TB WD GP + 320GB WD AAJS Mystery DVD-RW Vista Ultimate x64! ViewSonic P220F CRT + KDS 15" CRT 
KeyboardPowerCaseMouse
$3 Compaq keyboard with pretty aluminum finish ThermalTake PurePower 500W Rosewill R230-P-BK Wired Optical 
Mouse Pad
Table. Mouse pads are overrated 
  hide details  
Reply
Boot to the Head!
(13 items)
 
  
CPUMotherboardGraphicsRAM
Athlon64 X2 4200+ @ stock Epox 9NPA+SLI XFX 8800GS 384 4x1GB G.Skill DDR400 @ stock 
Hard DriveOptical DriveOSMonitor
120GB WD + 1TB WD GP + 320GB WD AAJS Mystery DVD-RW Vista Ultimate x64! ViewSonic P220F CRT + KDS 15" CRT 
KeyboardPowerCaseMouse
$3 Compaq keyboard with pretty aluminum finish ThermalTake PurePower 500W Rosewill R230-P-BK Wired Optical 
Mouse Pad
Table. Mouse pads are overrated 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Software News
Overclock.net › Forums › Industry News › Software News › [ZDnet] Safari/MacBook first to fall at Pwn2Own 2011