Second day Pwn2own: Firefox, Android, BlackBerry, iPhone, Windows Phone 7
After successful attacks on Safari and Internet Explorer 8 , the second day of the Pwn2Own 2011 competition brought victory over the iPhone 4 and the BlackBerry Torch 9800.
The iPhone was hacked by Charlie Miller, a veteran of the competition with Dion Blazakis. The last three years, Miller has successfully cracked both Apple phones and laptops, so hacking the iPhone 4 was a logical continuation of his career. The phone was compromised when visiting a dedicated webpage via Mobile Safari.
According to the rules of the competition, an exploit check on the latest software version is required. This year, the “freezing” of versions occurred last week, this should protect participants from updates with fixes issued right before the competition. If the “frozen” configuration is successfully cracked, the participant receives the device itself as a prize, and if the vulnerability is present in the latest software version, then it also receives money.
')
The iPhone was “frozen” iOS 4.2.1, but the same mistake exists in the newest iOS 4.3, so Miller won both the phone and the money. True, his exploit failed to breach the defense of iOS 4.3 due to the new Address Space Layout Randomization (ASLR) technology, but since there is an error in Mobile Safari, it still got the money.
The next platform, the BlackBerry Torch 9800, was also hacked by competition veterans breaking the iPhone in 2010. BlackBerry OS is compromised through a vulnerability in a browser based on the WebKit engine. Trio of researchers who broke through BlackBerry’s defense say that the main difficulty was not so much security systems, such as Data Execution Prevention (DEP) and ASLR, but the fact that the BlackBerry is a black box that does not have documentation and there are not enough utilities for analysis. Having found the hole, it took them a long time to make a working exploit. The attack was made on BlackBerry OS 6.0.0.246, the manufacturer soon released an updated version of the firmware, but the security hole was not fixed.
Also, tests were conducted on Firefox and phones with Android and Windows Phone 7 on board. A potential hacker of Ognelis abandoned the attempt, citing the instability of his exploit. Attacks on Android and Windows Phone 7 have not been successful - these platforms, like Chrome, have not yet been defeated. Perhaps this will happen on the third day of the competition.
Original news.
The iPhone was hacked by Charlie Miller, a veteran of the competition with Dion Blazakis. The last three years, Miller has successfully cracked both Apple phones and laptops, so hacking the iPhone 4 was a logical continuation of his career. The phone was compromised when visiting a dedicated webpage via Mobile Safari.
According to the rules of the competition, an exploit check on the latest software version is required. This year, the “freezing” of versions occurred last week, this should protect participants from updates with fixes issued right before the competition. If the “frozen” configuration is successfully cracked, the participant receives the device itself as a prize, and if the vulnerability is present in the latest software version, then it also receives money.
')
The iPhone was “frozen” iOS 4.2.1, but the same mistake exists in the newest iOS 4.3, so Miller won both the phone and the money. True, his exploit failed to breach the defense of iOS 4.3 due to the new Address Space Layout Randomization (ASLR) technology, but since there is an error in Mobile Safari, it still got the money.
The next platform, the BlackBerry Torch 9800, was also hacked by competition veterans breaking the iPhone in 2010. BlackBerry OS is compromised through a vulnerability in a browser based on the WebKit engine. Trio of researchers who broke through BlackBerry’s defense say that the main difficulty was not so much security systems, such as Data Execution Prevention (DEP) and ASLR, but the fact that the BlackBerry is a black box that does not have documentation and there are not enough utilities for analysis. Having found the hole, it took them a long time to make a working exploit. The attack was made on BlackBerry OS 6.0.0.246, the manufacturer soon released an updated version of the firmware, but the security hole was not fixed.
Also, tests were conducted on Firefox and phones with Android and Windows Phone 7 on board. A potential hacker of Ognelis abandoned the attempt, citing the instability of his exploit. Attacks on Android and Windows Phone 7 have not been successful - these platforms, like Chrome, have not yet been defeated. Perhaps this will happen on the third day of the competition.
Original news.
Source: https://habr.com/ru/post/115309/
All Articles