Pwn2Own 2009: Safari/MacBook falls in seconds

2009-03-19 17:56:55

#1

Kmar: Truth is my Bitch; +5,695|6858|132 and Bush

VANCOUVER, BC — Charlie Miller has done it again. For the second consecutive year, the security researcher hacked into a fully patched MacBook computer by exploiting a security vulnerability in Apple’s Safari browser.

“It took a couple of seconds. They clicked on the link and I took control of the machine,” Miller said moments after his accomplishment.

The contest kicked off at exactly 3:15 PM and, within seconds, Miller launched his drive-by attack and claimed the $10,000 top prize. He also got to keep the MacBook machine.

Miller said he came to the CanSecWest security conference with a plan to hack into Safari and had tested the exploit carefully to ensure “it worked the first time.”

TippingPoint’s Zero Day Initiative has acquired the exclusive rights to the vulnerability and coordinate the disclosure and patch release process with Apple.

Technical details of the vulnerability will not be released until a patch is ready.

Several hackers are currently attempting exploits against Internet Explorer 8 and Firefox but those browsers are still standing.

http://blogs.zdnet.com/security/?p=2917
Wow is just wow.

"Technical details of the vulnerability will not be released until a patch is ready." ..um yea. thank you?

Charlie Miller's bad side, do not want.

Q & A's: http://blogs.zdnet.com/security/?p=2941

Xbone Stormsurgezz

2009-03-19 18:04:05

#2

Pochsy: Artifice of Eternity; +702|5800|Toronto

At least this hacker is using his skills to better security features. Thank gawd for that.

Oh and I have to:

https://j.photos.cx/1237353917710-df1.jpg

The shape of an eye in front of the ocean, digging for stones and throwing them against its window pane. Take it down dreamer, take it down deep. - Other Families

2009-03-19 18:05:14

#3

Defiance: Member; +438|6928

Well done I suppose. Some confusion though: "The Zero Day Initiative will put up $5000 per browser bug, and $10,000 per mobile bug." from the tippingpoint blog. He hacked a laptop and safari, not a BlackBerry or iPhone so he only got $5000 for this, no?

Edit: Poc, that isn't nearly funny.

Last edited by Defiance (2009-03-19 18:05:40)

2009-03-19 18:06:19

#4

.Sup: be nice; +2,646|6710|The Twilight Zone

Safari is known to have lots of exploits, not surprised it got hacked, the only surprise for me is "..in matter of seconds...". Didn't know it was that bad

https://www.shrani.si/f/3H/7h/45GTw71U/untitled-1.png

2009-03-19 18:16:59

#5

CrazeD: Member; +368|6930|Maine

.Sup wrote:
Safari is known to have lots of exploits, not surprised it got hacked, the only surprise for me is "..in matter of seconds...". Didn't know it was that bad

Well of course, Apple doesn't really have any security counter measures.

2009-03-19 18:18:34

#6

Kmar: Truth is my Bitch; +5,695|6858|132 and Bush

He was also the first person publicly credited for exploiting the iPhone.

In the photo Miller is the older guy on the far left. The two guys on the right are the pwnee's. They are realizing that they can not control their machines.

Xbone Stormsurgezz

2009-03-19 18:19:25

#7

Kmar: Truth is my Bitch; +5,695|6858|132 and Bush

.Sup wrote:
Safari is known to have lots of exploits, not surprised it got hacked, the only surprise for me is "..in matter of seconds...". Didn't know it was that bad

Let's just say he knew exactly what to do beforehand.

Xbone Stormsurgezz

2009-03-19 18:31:02

#8

TopHat01: Limitless; +117|6161|CA

Damn, and my friends think their macs are invincible...

Check out my YouTube channel

2009-03-19 19:31:44

#9

Defiance: Member; +438|6928

.Sup wrote:
Safari is known to have lots of exploits, not surprised it got hacked, the only surprise for me is "..in matter of seconds...". Didn't know it was that bad

Yes, it was something that he had worked on before the competition. The rules allow the clicking of one malicious link so I imagine he automated his side of the deal and the other computer just clicked a link..

2009-03-19 20:12:56

#10

Kmar: Truth is my Bitch; +5,695|6858|132 and Bush

Defiance wrote:
.Sup wrote:
Safari is known to have lots of exploits, not surprised it got hacked, the only surprise for me is "..in matter of seconds...". Didn't know it was that bad
Yes, it was something that he had worked on before the competition. The rules allow the clicking of one malicious link so I imagine he automated his side of the deal and the other computer just clicked a link..

Still, it was relatively easy to do. With just a click they lost complete control of their machine. I imagine there was a degree of deception involved as well.

I think this is the bottom line "Why Safari? Why didn’t you go after IE or Safari?

It’s really simple. Safari on the Mac is easier to exploit. The things that Windows do to make it harder (for an exploit to work), Macs don’t do. Hacking into Macs is so much easier. You don’t have to jump through hoops and deal with all the anti-exploit mitigations you’d find in Windows.

It’s more about the operating system than the (target) program. Firefox on Mac is pretty easy too. The underlying OS doesn’t have anti-exploit stuff built into it."

Xbone Stormsurgezz

2009-03-20 10:44:39

#11

ghettoperson: Member; +1,943|6906

Kmarion wrote:
Still, it was relatively easy to do. With just a click they lost complete control of their machine. I imagine there was a degree of deception involved as well.

"Click to see bewbs"

*click*

"Fuck"

2009-03-20 11:49:18

#12

baggs: Member; +732|6461

It's quite cool but does anyone look at that Charlie Miller guy and think 'way to dress for a public event'?

2009-03-20 12:50:57

#13

.Sup: be nice; +2,646|6710|The Twilight Zone

CrazeD wrote:
.Sup wrote:
Safari is known to have lots of exploits, not surprised it got hacked, the only surprise for me is "..in matter of seconds...". Didn't know it was that bad
Well of course, Apple doesn't really have any security counter measures.

I'm pretty sure they don't leave security holes in their browser intentionally.

Kmarion wrote:
.Sup wrote:
Safari is known to have lots of exploits, not surprised it got hacked, the only surprise for me is "..in matter of seconds...". Didn't know it was that bad
Let's just say he knew exactly what to do beforehand.

I know he did but even when people hack other software on contests its not that fast

Defiance wrote:
.Sup wrote:
Safari is known to have lots of exploits, not surprised it got hacked, the only surprise for me is "..in matter of seconds...". Didn't know it was that bad
Yes, it was something that he had worked on before the competition. The rules allow the clicking of one malicious link so I imagine he automated his side of the deal and the other computer just clicked a link..

I know...

Last edited by .Sup (2009-03-20 13:50:41)

2009-03-20 13:01:54

#14

twoblacklines: all grown up now (its boring); +49|6464

most geeks dont give a fuck what they look like etc.

2009-03-20 13:24:19

#15

specialistx2324: hahahahahhaa; +244|6946|arica harbour

well safari is hackable and slow.. but i think every browser is like that but some are worse than others like the internet explorer

2009-03-20 13:51:47

#16

.Sup: be nice; +2,646|6710|The Twilight Zone

specialistx2324 wrote:
well safari is hackable and slow.. but i think every browser is like that but some are worse than others like the internet explorer

There are many versions of IE. Or all IEs are worse than other browsers?

2009-03-20 14:44:16

#17

CrazeD: Member; +368|6930|Maine

.Sup wrote:
CrazeD wrote:
.Sup wrote:
Safari is known to have lots of exploits, not surprised it got hacked, the only surprise for me is "..in matter of seconds...". Didn't know it was that bad
Well of course, Apple doesn't really have any security counter measures.
I'm pretty sure they don't leave security holes in their browser intentionally.

I never said they did.

I said they don't have any protection against it. Mac fails at security.

2009-03-20 14:48:26

#18

.Sup: be nice; +2,646|6710|The Twilight Zone

CrazeD wrote:
.Sup wrote:
CrazeD wrote:

Well of course, Apple doesn't really have any security counter measures.
I'm pretty sure they don't leave security holes in their browser intentionally.
I never said they did.

I said they don't have any protection against it. Mac fails at security.

So your talking about their PCs and not just about Safari?

2009-03-20 15:00:52

#19

CrazeD: Member; +368|6930|Maine

.Sup wrote:
CrazeD wrote:
.Sup wrote:

I'm pretty sure they don't leave security holes in their browser intentionally.
I never said they did.

I said they don't have any protection against it. Mac fails at security.
So your talking about their PCs and not just about Safari?

I am talking about OSX being shit for security.

Read Kmar's post.

2009-03-21 00:03:44

#20

Kmar: Truth is my Bitch; +5,695|6858|132 and Bush

specialistx2324 wrote:
well safari is hackable and slow.. but i think every browser is like that but some are worse than others like the internet explorer

Slow? ..nah. It is consistently faster than the others. But you're talkin ms.. not sure if the trade off is worth it . Also consider the windows version is considerably more difficult.

ghettoperson wrote:
Kmarion wrote:
Still, it was relatively easy to do. With just a click they lost complete control of their machine. I imagine there was a degree of deception involved as well.
"Click to see bewbs"

*click*

"Fuck"

RATS!! Foiled again!!

Xbone Stormsurgezz

2009-03-21 23:57:43

#21

Kmar: Truth is my Bitch; +5,695|6858|132 and Bush

+1 for google.

http://lifehacker.com/5177709/chrome-th … wn-contest

Xbone Stormsurgezz

2009-03-22 00:01:53

#22

Little BaBy JESUS: m8; +394|6406|'straya

Kmarion wrote:
+1 for google.

http://lifehacker.com/5177709/chrome-th … wn-contest

Yay i'm using Chrome. Nice to know its still standing

2009-03-22 00:09:35

#23

Cheez: Herman is a warmaphrodite; +1,027|6696|King Of The Islands

Stock browsers? Cause if Firefox had NoScript...

My state was founded by Batman. Your opinion is invalid.

2009-03-22 00:13:27

#24

Little BaBy JESUS: m8; +394|6406|'straya

Cheez wrote:
Stock browsers? Cause if Firefox had NoScript...

Yes but if Chrome can do it without addons or extra features or whatever doesn't it still make it better?

Just saying...

2009-03-22 00:14:27

#25

Cheez: Herman is a warmaphrodite; +1,027|6696|King Of The Islands

It doesn't have ABP so no

My state was founded by Batman. Your opinion is invalid.

BF2S Forums Pwn2Own 2009: Safari/MacBook falls in seconds

.Sup wrote:

.Sup wrote:

.Sup wrote:

Defiance wrote:

.Sup wrote:

Kmarion wrote:

CrazeD wrote:

.Sup wrote:

Kmarion wrote:

.Sup wrote:

Defiance wrote:

.Sup wrote:

specialistx2324 wrote:

.Sup wrote:

CrazeD wrote:

.Sup wrote:

CrazeD wrote:

.Sup wrote:

CrazeD wrote:

.Sup wrote:

CrazeD wrote:

.Sup wrote:

specialistx2324 wrote:

ghettoperson wrote:

Kmarion wrote:

Kmarion wrote:

Cheez wrote:

Board footer