On CNET: Start your tech shopping now
BNET Business Network:
BNET
TechRepublic
ZDNet

March 18th, 2009

Pwn2Own trifecta: Hacker exploits IE8, Firefox, Safari

Posted by Ryan Naraine @ 5:40 pm

Categories: Apple, Arbitrary Code Execution, Browsers, Complex Attacks, Data theft, Denial of Service (DoS), Firefox, Malware, Mozilla, Open source, Patch Watch, Research, Responsible disclosure, Vulnerability research, Zero-day attacks

Tags: Nil, Mozilla Firefox, Apple Safari, Hacker, Hacking, Web Browsers, Security, Internet, Ryan Naraine

VANCOUVER, BC — It took a while longer but Microsoft’s Internet Explorer 8 did not survive the hacker onslaught at this year’s CanSecWest Pwn2Own contest.

[ ALSO SEE: Pwn2Own 2009: Safari/MacBook falls in seconds ]

A security researcher named “Nils” (he declined to provide his full name) performed a clean drive-by download attack against the world’s most widely used browser to take full control of a Sony Vaio machine running Windows 7.

He won a cash prize and got to keep the hardware.  Details of the vulnerability, which was described by contest sponsor TippingPoint ZDI as a “brilliant IE8 bug!” are being kept under wraps.

Several members of Microsoft’s security response team were on hand to witness the successful exploit.

“Nils” also scored a clean hit against Apple’s Safari (he was the second hacker to exploit Safari) and, later in the afternoon, he exploited a Firefox zero-day flaw to claim the trifecta.

More to come…

Ryan NaraineRyan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.


Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

  • Talkback
  • Most Recent of 244 Talkback(s)
Don't you
Don't you accept the fact you're more prone to security vulnerabilities

WHEN YOU DOWNLOAD PIRATED/HACKED SOFTWARE??... (Read the rest)
Posted by: richvball44 Posted on: 04/16/09 You are currently: a Guest | | Terms of Use
Axsimulate dared me to post here, I'm obliging him  NonZealot | 03/18/09
Nope  honeymonster | 03/18/09
OS does matter  NonZealot | 03/18/09
I can see why you wouldn't  Richard Flude | 03/18/09
NonZealot is immune to factual statements. [nt]  olePigeon | 03/19/09
@NonZealot  Axsimulate | 03/19/09
The OS matters  DaveAtFraud | 03/19/09
Somewhat true  hasta la Vista, bah-bie | 03/19/09
@NonZealot  Axsimulate | 03/19/09
A beta browser, a beta OS  LiquidLearner | 03/19/09
Are you trying to tell us that...  kozmcrae | 03/19/09
@LiquidLearner  Axsimulate | 03/19/09
good point  pcguy777 | 03/19/09
Yeah, but IE7 and Vista SP1 aren't in beta  hasta la Vista, bah-bie | 03/19/09
Don't you  richvball44 | 04/16/09
Just wrong.  shane@... | 03/19/09
@shane  Axsimulate | 03/19/09
And the article was wrong  DeusExMachina | 03/19/09
Bit bitter?  shane@... | 03/19/09
Bittersweet  DeusExMachina | 03/19/09
Yes I do  shane@... | 03/19/09
re: Bittersweet  rtk | 03/19/09
Relief to know  ksarkies@... | 03/19/09
wtf  macgroover | 03/19/09
Wrong.  Sleeper Service | 03/19/09
Nils did IE8 first  macgroover | 03/19/09
Look at the screen shot.  Sleeper Service | 03/19/09
I suspect that Safari went down first...  914four | 03/19/09
Of course...  tikigawd | 03/19/09
Moot Point  rjacksix | 03/19/09
No Safari went down....  Sleeper Service | 03/19/09
@tiki  DeusExMachina | 03/19/09
@DeusEx  Badgered | 03/19/09
Except  DeusExMachina | 03/19/09
Really?  Sleeper Service | 03/19/09
@Deus  tikigawd | 03/19/09
Reply to tikigawd  914four | 03/19/09
@914: target  tikigawd | 03/19/09
Doesn't mean dick  rag@... | 03/19/09
Can't find specs other than 10.5.6 for the MB  Jesster | 03/19/09
@NonZealot  Axsimulate | 03/19/09
OS/X or Safari  haz113k | 03/23/09
OS X  rtk | 03/23/09
No what it really means is that  frgough | 03/18/09
As it was was pointed out in the Safari post...  DevJonny | 03/19/09
I know  frgough | 03/19/09
@DevJonny  Axsimulate | 03/19/09
He didn't need another Macbook  InAction Man | 03/19/09
LOL. (nt)  James T. Kirk | 03/19/09
And I'll bet you don't even get the irony  frgough | 03/19/09
Why?  rjacksix | 03/19/09
"Collaborate, Solve Problems, Work Together"  RickB9 | 03/19/09
Go preach that in Redmond  InAction Man | 03/19/09
Go preach that in Redmond  MGP2 | 03/19/09
Whoopsy-daisy! grin  hasta la Vista, bah-bie | 03/22/09
I wish  macadam | 03/20/09
Yes, he wanted that Macbook...  MGP2 | 03/19/09
RE: Pwn2Own trifecta: Hacker exploits IE8, Firefox, Safari  Linux User 147560 | 03/18/09
Naivety  honeymonster | 03/18/09
Actually, I disagree  NonZealot | 03/18/09
Pure BS  EmperorDarius | 03/19/09
@EmperorDarlus  Axsimulate | 03/19/09
Are you serious?  xuniL_z | 03/21/09
He made sense  Dave Keays | 03/23/09
Are you sure about that?  Linux User 147560 | 03/18/09
You must be very impressed by those who use Windows without issues!  NonZealot | 03/18/09
I have no admiration for those  Linux User 147560 | 03/18/09
Seems to me...  LeeC | 03/19/09
Consider this.  kozmcrae | 03/19/09
@Koz - Consider this as well...  MGP2 | 03/19/09
My success  Linux User 147560 | 03/19/09
lost time  tmsbrdrs | 03/19/09
Incredible.  Cayble | 03/19/09
Re: Incredible.  Cyrorm | 03/19/09
Only recounting my experiences and observations of  Linux User 147560 | 03/19/09
My sister-in-laws Dell Dimension 3000.  joe.smetona@... | 03/19/09
So Joe - you left us hanging...  JCitizen | 03/23/09
Work and dedication?  Erroneous | 03/19/09
Nope  Linux User 147560 | 03/19/09
@Linux User...  JCitizen | 03/23/09
Excellent Post.  joe.smetona@... | 03/19/09
Not necessarily a pundit  Dave Keays | 03/23/09
Actually....  storm14k | 03/19/09
One of the best...  JCitizen | 03/23/09
There's no such thing  GOTBO | 03/19/09
Issues? Like what?  Cayble | 03/19/09
read your own comment  tmsbrdrs | 03/20/09
Re: Denial  Cyrorm | 03/19/09
I am lying now.  Erroneous | 03/19/09
Why is there a foot sticking out of your mouth? NB  Dave Keays | 03/23/09
Using windows IS the issue.  MyMac | 03/19/09
The last Windows computer i bought. . .  CodeCurmudgeon | 03/19/09
while downloading AVG..  JCitizen | 03/23/09
@NonZealot  Axsimulate | 03/19/09
Fair comparison?  ITSa341@... | 03/19/09
It is very impressive..  JCitizen | 03/23/09
the OS that falls within seconds once connected to the Internet!  tmsbrdrs | 03/19/09
hmm...  Badgered | 03/20/09
Link to Windows failure in 5 min. article (ZDNet)  joe.smetona@... | 03/20/09
I can say the same as...  logicearth@... | 03/18/09
The question is  Linux User 147560 | 03/18/09
You won't believe me anyway so why ask?  logicearth@... | 03/18/09
no security apps  tmsbrdrs | 03/20/09
They don't - that is just it...  JCitizen | 03/23/09
The same question is...  MGP2 | 03/19/09
Ummm  Linux User 147560 | 03/19/09
Linux lacks several video plugins much needed by you porn addicts  InAction Man | 03/19/09
Ah, so you admit Linux is lacking  Acting NonZealot | 03/19/09
In the end...  Cayble | 03/19/09
just to be sure  tmsbrdrs | 03/20/09
Unfortunately, narcissism runs rampant here.  joe.smetona@... | 03/19/09
I'm calling BS  wolf_z | 03/19/09
There's tons of people here who would differ.  joe.smetona@... | 03/19/09
@wolf_z  Axsimulate | 03/19/09
Linux is free and installs (without drivers) in 20 minutes.  joe.smetona@... | 03/19/09
@Joe: What if  tikigawd | 03/19/09
running overnight  tmsbrdrs | 03/20/09
@tikigawd  tmsbrdrs | 03/20/09
@tmsbrdrs: Why?  tikigawd | 03/20/09
@tmsbrdrs: running overnight  tikigawd | 03/20/09
Worst thing is AVG free..  JCitizen | 03/23/09
Can you say...  MGP2 | 03/19/09
Geek Squad...  joe.smetona@... | 03/19/09
Returning Linux  CodeCurmudgeon | 03/19/09
which machines?  tmsbrdrs | 03/20/09
The exact opposite is true. And thats obvious.  Cayble | 03/19/09
I didnt say 99% were going to Geek, you misread.  joe.smetona@... | 03/19/09
What did joe.smetona say???  Cayble | 03/19/09
@Cayble.  joe.smetona@... | 03/19/09
truth  tmsbrdrs | 03/20/09
You think the average user could run Linux successfully?  Uncle Ebeneezer | 03/19/09
Try this.  joe.smetona@... | 03/19/09
ASUS  rjacksix | 03/19/09
Guess those 60+ year old  Linux User 147560 | 03/19/09
You don't even believe what you just wrote.  kozmcrae | 03/19/09
learning curve  tmsbrdrs | 03/24/09
Totally disagree  Sparhawk_z | 03/19/09
Wonderful Experience?  Dave Keays | 03/23/09
Wow. I must be the exception.  Erroneous | 03/19/09
That sounds like my Windows experience.  ye | 03/19/09
Not wrong  GOTBO | 03/19/09
Yes wrong. I'm sorry you're incapable of using Windows securely.  ye | 03/19/09
But don't apply your ability to others. (NT)  kozmcrae | 03/19/09
properlly Ran  SCKITZ@... | 03/19/09
Truth is no matter to the Fanbois. So save the logic, its wasted here. NT  invmgr@... | 03/19/09
One problem  mswift@... | 03/19/09
Are you sure about that  rkwalters@... | 03/19/09
We should all be using Linux?  NonZealot | 03/18/09
Why do good people like yourself waste time with idiots like Linsux_User  transposeIT | 03/19/09
You are right...  InAction Man | 03/19/09
RE: Why do good people like yourself waste time with idiots like Linsux_Use  s32432432 | 03/19/09
What delusion?  storm14k | 03/19/09
FUD  SCKITZ@... | 03/19/09
Nahh they're not deluded  s32432432 | 03/19/09
There's no dillusion.  GOTBO | 03/19/09
Ubuntu with an attitude.  joe.smetona@... | 03/19/09
The ones with delusions  Linux User 147560 | 03/19/09
Most of them...  kozmcrae | 03/19/09
The Truth About Linux  TheGooch1 | 03/19/09
Quite the contrary.  InAction Man | 03/19/09
You've only been using Linux since July of 08???  MGP2 | 03/19/09
First Impressions are lasting impressions. ...NT...  joe.smetona@... | 03/19/09
@joe.smetona  Acting NonZealot | 03/19/09
You'll be the one needing the syringe.  kozmcrae | 03/19/09
@Acting Non Zealot....You owe it to yourself to...  joe.smetona@... | 03/20/09
You may have had a corrupted install disk.  joe.smetona@... | 03/19/09
Your truth  rjacksix | 03/19/09
Eats up whose time?  kozmcrae | 03/19/09
Seconded!  ericesque | 03/23/09
not preaching here.  brokndodge@... | 03/19/09
Here are some links that might help you.  kozmcrae | 03/19/09
All 3 ran on Windows, right?  nizuse | 03/19/09
All 3 could run on Linux as well...  Linux User 147560 | 03/19/09
Ouch!  ashdude | 03/18/09
Ugly, just ugly!  honeymonster | 03/18/09
What do you mean by...  logicearth@... | 03/18/09
Chrome Sandboxing  larry@... | 03/18/09
*del*  logicearth@... | 03/18/09
Chrome uses a built-in  honeymonster | 03/18/09
Here are the rules of the contest  NonZealot | 03/18/09
Why would you worry about  GOTBO | 03/19/09
Brilliant!  rjacksix | 03/19/09
Clarifications & Question  Mewshew | 03/18/09
And what version of Firefox?  larry@... | 03/18/09
nt  Davewrite | 03/18/09
Hmm nothing about Opera there...  james.faction | 03/19/09
Opera is kinda 'closed'  Lerianis | 03/19/09
typical "nobody uses Opera" response  james.faction | 03/20/09
I use Opera With Linux. Infection is a non-issue with Opera and Firefox.  joe.smetona@... | 03/21/09
RE: Pwn2Own trifecta: Hacker exploits IE8, Firefox, Safari  Fri13 | 03/19/09
Microsoft Witnessed The Exploit  itanalyst2@... | 03/19/09
HAHAHAHAHAHAHAHAHAHAH1  GuyAlanDye | 03/19/09
Um, We Are Talking About an Alpha Version of IE8  TheGooch1 | 03/19/09
Uhm... It wasnt an Alpha...  Stuka | 03/19/09
My IE8RC1 had a drive by try writing software sometime.  rtirman37@... | 03/19/09
Gotta wonder...  Wolfie2K3 | 03/19/09
Some questions  frgough | 03/19/09
Misuse of Terms  rjacksix | 03/19/09
Misuse of Terms  frgough | 03/19/09
Here is how it works....  rjacksix | 03/19/09
Nothing is safe...  jtb74129 | 03/19/09
MS fix is to only allow users to view approved sites  LittleGuy | 03/19/09
Whose Fault?  lmenningen | 03/19/09
Holy Wars  ryumaou@... | 03/19/09
Screwed  mswift@... | 03/19/09
Tastes Great, Less Filling!!  oncall | 03/19/09
RE: Pwn2Own trifecta: Hacker exploits IE8, Firefox, Safari  johan.van.rafelghem@... | 03/19/09
Too,True  sboverie@... | 03/19/09
White-list. The only way...  Narg | 03/19/09
You can do that  mswift@... | 03/19/09
The security system  Update victim | 03/19/09
Order  macgroover | 03/19/09
Incorrect.  Sleeper Service | 03/19/09
'Nobody' Is The Wrong Word  TheGooch1 | 03/19/09
Terms  frgough | 03/19/09
Here is how it works....  rjacksix | 03/19/09
RE: Pwn2Own trifecta: Hacker exploits IE8, Firefox, Safari  mSn mSN | 03/19/09
As usual the don't give any details of security  rgeiken@... | 03/19/09
A better analogy  frgough | 03/19/09
They didnt forget to tell them about the bonuses  pcguy777 | 03/19/09
You mean Rush? ... No thanks ... NT...  joe.smetona@... | 03/19/09
Details?  rjacksix | 03/19/09
ZDnet will not...  joe.smetona@... | 03/19/09
Isn't Change Grand !  pizzaman7 | 03/19/09
Well, you're off topic but.....  Badgered | 03/19/09
I guess every single one...  joe.smetona@... | 03/19/09
must a been a lan hack only  pcguy777 | 03/19/09
FF3.1 Beta 2 vs IE8 RC1 Reviewed  PCWizKid | 03/19/09
RE: Pwn2Own trifecta: Hacker exploits IE8, Firefox, Safari  Daiv_Skinner | 03/19/09
RE: Pwn2Own trifecta: Hacker exploits IE8, Firefox, Safari  Michael Fournier | 03/19/09
PS  Michael Fournier | 03/19/09
RE: Pwn2Own trifecta: Hacker exploits IE8, Firefox, Safari  gkrwc | 03/19/09
Easy  rtk | 03/19/09
Fight All You Want, You All Lost...  Leans_To_Center | 03/19/09
What about Opera?  [deXter] | 03/20/09
yeah that's what I want to know too  james.faction | 03/20/09
I think with any testing you are seeing Windows issues,  joe.smetona@... | 03/21/09
sweet  Hobyx | 03/20/09
/drool @ Vaio  mwinfie | 03/21/09
RE: Pwn2Own trifecta: Hacker exploits IE8, Firefox, Safari  apexwebmaster | 03/23/09
Is Linux wide open for attacks, then?  Spats30 | 03/23/09
Security within Linux article  Sephoroth | 03/23/09
Shock & Awe ----  ironfist03 | 03/24/09
RE: Pwn2Own trifecta: Hacker exploits IE8, Firefox, Safari  Nixkap | 03/27/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement

Recent Entries

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

Click Here