PwnFest contest results
Competition (contest) between security readers called PwnFest is a bit like another well-known contest - Pwn2Own. PwnFest was held in South Korea, where security researchers were asked to compromise various devices and applications for remote code execution, as well as enhancing their privileges in the system. The range of products offered for hacking is quite extensive, including Edge web browser on Windows 10, Android 7 OS on the latest Google Pixel device, Microsoft Hyper-V known virtualization environment, Google Chrome and Apple Safari web browsers, and VMware Workstation, Adobe Flash Player and Apple iOS 10.
A team of Chinese security researchers from the well-known company Qihoo 360 Technology not only managed to successfully compromise Microsoft Edge, VMware Workstation, Adobe Flash, Google Pixel, but also win the title “Lord of Pwn”. In total, the team earned $ 530k.
All applications intended for compromise, as well as the OS, are fully updated up-to-date. Pricing for available attack cases is given below. It can be seen that the highest price is offered for hacking VMware Workstation virtualization systems, as well as MS Hyper-V. The extra-reward means not only the successful execution of the code, but also the bypass of the restrictions of the sandbox, i.e., obtaining the maximum root / SYSTEM rights.
')
Hacking a virtualization system is a successful bypass of the limitations of the hypervisor that it imposes on the executable code in a virtual machine. That is, security researchers are given the opportunity to demonstrate how an exploit works that uses one or more security vulnerabilities in a virtual machine to execute code on a real machine (host) from a process on a guest system. The demonstrated exploit should work successfully on the most current software and OS.
Qihoo 360 researchers also successfully executed the remote code on the Google Pixel smartphone with Android 7, while earning $ 120k.
Other results.
After demonstrating the work of the exploits, information about the 0day vulnerabilities used in them is sent to the appropriate vendors for correction.
A team of Chinese security researchers from the well-known company Qihoo 360 Technology not only managed to successfully compromise Microsoft Edge, VMware Workstation, Adobe Flash, Google Pixel, but also win the title “Lord of Pwn”. In total, the team earned $ 530k.
All applications intended for compromise, as well as the OS, are fully updated up-to-date. Pricing for available attack cases is given below. It can be seen that the highest price is offered for hacking VMware Workstation virtualization systems, as well as MS Hyper-V. The extra-reward means not only the successful execution of the code, but also the bypass of the restrictions of the sandbox, i.e., obtaining the maximum root / SYSTEM rights.
')
Hacking a virtualization system is a successful bypass of the limitations of the hypervisor that it imposes on the executable code in a virtual machine. That is, security researchers are given the opportunity to demonstrate how an exploit works that uses one or more security vulnerabilities in a virtual machine to execute code on a real machine (host) from a process on a guest system. The demonstrated exploit should work successfully on the most current software and OS.
Program can successfully run an arbitrary
code in the virtual machine host process. For example, the contestant may
choose to run a command line tool in host operation system. The contestant can choose
clearly
Qihoo 360 researchers also successfully executed the remote code on the Google Pixel smartphone with Android 7, while earning $ 120k.
Other results.
- The well-known team of security reservers of iOS Pangu Team successfully compromised the Safari web browser on OS X Sierra, earning $ 80k.
- A well-known hacker from South Korea with the nickname Lokihardt, successfully compromised the Edge web browser on the latest Windows 10 x64 RS1, and also managed to elevate its privileges in the system to the SYSTEM level, earning $ 140k.
- Qihoo 360 researchers successfully executed the code on the Flash Player, increasing their privileges in the system to the SYSTEM level using the LPE vulnerability in win32k.sys, earning $ 120k.
After demonstrating the work of the exploits, information about the 0day vulnerabilities used in them is sent to the appropriate vendors for correction.
Source: https://habr.com/ru/post/315224/
All Articles