As every year, at the CanSecWest conference, browser vendors submit their applications to a number of hackers are attempting to orchestrate their attacks.
The white hacker community plays a fundamental role in application security. These experts do try to detect vulnerabilities before they are exploited by attackers. To encourage this work, the browser vendors offer rewards throughout the year but also take part in competitions. The best known certainly remains Pwn2Own held annually.
After a first day Chrome, Safari and Flash Player did not resist the exploits of hackers. At the same time these vulnerabilities allowed to undermine the latest versions of Windows and OS X.
The 360Vulcan team, the Chinese company Qihoo 360, managed to exploit a Flash Player flaw allowing it to remotely execute code with another affecting the Windows kernel to obtain elevated system rights. They got 80,000 dollars (60,000 to 20,000 and Flash Player for Windows). For the full article click here
from hacker samurai http://ift.tt/1WvFdQq
via IFTTT
No comments:
Post a Comment