LinkBack URL
About LinkBacksMacBook Air falls in two minutes at PWN 2 OWN | Zero Day | ZDNet.com
Told you Mac's sucked :P
Be interesting to see who wins between vista and linux today.
MacBook Air falls in two minutes at PWN 2 OWN | Zero Day | ZDNet.com
Told you Mac's sucked :P
Be interesting to see who wins between vista and linux today.
ho ho I could not be arsed to search. oh well.
'According to sources at the conference, Miller used an exploit against the Safari browser that ships standard with Mac OS X. Details of the vulnerability and the attack vector are now the property of TippingPoint’s ZDI (Zero Day Initiative), the sponsor of the Pwn2Own challenge'
More like Safari sucks.
TippingPoint | DVLabs | PWN to OWN: Final Day's Results and Wrap Up
The vista and the ubuntu machine are still standing. The rules have been further relaxed.
I'm expecting the Vista machine wont last long under these circumstances.we are now opening up the the scope of the targets beyond just default installed applications on those laptops; any popular 3rd party application (as deemed "popular" by the judges) can now be installed on the laptops for a prize of $5,000 upon a successful compromise
can't open that article ( at least not from work ) but was curious as to how they set up each machine do they configure firewalls and other mechanisms before they allow them to try to gain access to each machine or is it just a base line pre installed image that each machine already came with ?
@gecko They're as shipped by the vendor:
The Cash Prizes
All machines will be fully patched and in a default configuration. Simply put, if the vendor shipped it on the box and it's enabled, it's in scope.
Day 1: March 26th: Remote pre-auth
All laptops will be open only for Remotely exploitable Pre-Auth vulnerabilities which require no user interaction. First one to pwn it, receives the laptop and a $20,000 cash prize.
The pwned machine(s) will be taken out of the contest at that time.
Day 2: March 27th: Default client-side apps
The attack surfaces increases to also include any default installed client-side applications which can be exploited by following a link through email, vendor supplied IM client or visiting a malicious website. First one to pwn it receives the laptop and a $10,000 cash prize.
The pwned machine(s) will be taken out of the contest at that time.
Day 3: March 28th: Third Party apps
Assuming the laptops are still standing, we will finally add some popular 3rd party client applications to the scope. That list will be made available at CanSecWest, and will be also posted here on the blog. First to pwn it receives the laptop and a $5,000 cash prize.
*To accommodate any individuals who may not have gotten a chance to take a stab at the machines, we'll provide the opportunity onsite for folks to submit their vulns through the normal ZDI process if they'd like to be compensated for their discovery.
The awards ceremony will take place at the end of the day on the 28th. More details and daily results from the contest will be posted here on our blog. Please feel free to ask questions in the Comments section of this posting and we will try to answer them in a timely manner.
Update - see our main blog index for the most recent daily updates from the contest.
*yawn*
Vista was compromised.Originally Posted by Disease
Cue MS apologist: It's more secure because no-one uses it, its adobe's fault etc.....So at the end of the last day of the contest, only the Sony VAIO laptop running Ubuntu was left standing.
One-Nil-Nil to open source
More woes for Apple:
Some MacBooks have premature age spots | Tech News on ZDNet
I thought this was long fixed? The article is from 2006.
Edited: a 2006 article is used to try and prove something. What, I don't know!
I mean- imagine a hardware vendor having hardware issues?
Last edited by kingswood; 29th March 2008 at 06:22 PM.
D'oh, I just clicked on the link at the bottom of the original story about the hack - didn't see the date. Whoops. Oh poop. Whatever.
I guess Zdnet don't carry so many OSX security stories
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
Reply With Quote