Home
Build a PC

Build a PC Featured Content

Build It: Three Radeon HD 7970s—One Monster PC

Build a PC on Any Budget: Three Builds from $500 to $2000

Intel's Ivy Bridge: The Maximum PC Review

Kepler Unveiled: Nvidia's GTX 680 Benchmarked In-Depth!

Is Your SATA Cable Slowing Down Your Data Transfers? Max PC Investigates

All Build a PC Articles
Windows
Windows RSS
Windows Featured Content

Windows 8 on Arm – Everything You Need To Know About WOA

Looking Forward: Our Predictions for Windows 9

8 Things We Hate About Windows 8

8 Things We Love About Windows 8

The Big Guide: 20 Tips and Tricks to Get The Most Out of Windows 8

All Windows Articles
Best of the Best
Hardware
- Hardware Home
- CPU
- Memory
- Video Cards
- Cases
- Cooling
- Displays
- Motherboards
- Reviews
Hardware RSS
Hardware Featured Content

Build It: Upgrading an X58 Rig into a Gaming Powerhouse

Build a PC on Any Budget: Three Builds from $500 to $2000

PC Pr0n: 25 New, Kick-Ass Case Mods

Intel's Ivy Bridge: The Maximum PC Review

Gaming Showdown: Playstation Vita vs iPhone 4S

All Hardware Articles
Software
Software RSS
Software Featured Content

Windows 8 on Arm – Everything You Need To Know About WOA

8 Things We Hate About Windows 8

Install Windows 8 Today

Seven Ways to Stop Piracy WITHOUT DRM

In Search of the Suite Spot: 3 Media Creation Packages Face Off

All Software Articles
Gaming
- Gaming Home
- Reviews
- Hardware
- Software
- Gaming PCs
- Bioshock
Gaming RSS
Gaming Featured Content

The Game Boy: Game Endings Aren't Bad – They're Just Misunderstood

First Impressions: Diablo III's Hits, Misses, and Head-Scratchers

Never Be Productive Again: The 20 Best New Browser Games

Gaming Showdown: Playstation Vita vs iPhone 4S

Eurocom Neptune 3D Review

All Gaming Articles

IE8 and Safari First to Fall at Pwn2Own 2011

Posted 03/10/2011 at 1:53pm | by Paul Lilly

12

Comments

Print

Apple earlier today updated its Safari browser to version 5.0.4, plugging up 62 security holes in the process. Even so, it took French security firm Vupen just 5 seconds to exploit the browser and take home a $15,000 bounty from TippingPoint for doing so. This marks the first time in four years that Charlie Miller, an analyst with Security Evaluators, wasn't first to crack the Safari browser in the annual Pwn2Own contest. And what of Microsoft's IE8 browser? It didn't fare much better.

First, let's be clear that the exploit wasn't written in 5 seconds. The winning exploit was written ahead of time for the previous version of Safari -- version 5.0.3 -- on the MacBook Air. In order to win the $15,000 prize, the exploit had to still work in version 5.0.4, which it did, ComputerWorld reports.

As for Internet Explorer 8, which was not updated immediately before the contest began, it also fell at the hands of its first attacker. Stephen Fewer, founder of Harmony Security, bypassed IE8's Protected Mode, which is a sort of sandbox mode intended to isolate the browser from the OS in case a website installs malicious software.

Tags:

12

Comments

Comments are closed on this article

trhl4589

March 11, 2011 at 2:54pm

i do because somtimes i think ie9 can be slower at times and vice versa

Conal_keaney

March 11, 2011 at 12:44am

My question is, "Who even uses Safari?"

murixbob

March 10, 2011 at 10:21pm

You know what I don't see on there either? Opera

OhSoCheesy

March 10, 2011 at 8:24pm

If it only took 5 seconds for Safari and not much longer for IE8, then why didn't they do Chrome today?!?! :)

Lytesson

March 10, 2011 at 8:14pm

my money is on chrome.. best browers out there by far

livebriand

March 10, 2011 at 5:45pm

How did IE9, Chrome 10, and Firefox 4 fare?

MrBlueCheese

March 10, 2011 at 8:54pm

They are not using those browsers.

The only browsers they are allowed to hack on are IE8, Chrome 9 and Firefox 3.6

OliverSudden

March 10, 2011 at 4:40pm

My Little Pwny

cpuking2010

March 10, 2011 at 2:17pm

Let me just say: BAHHAHAHAHAHAHAHAHAHAHAHAAHHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAH..... BAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAHAH. Thank you.

bpstone

March 10, 2011 at 4:59pm

What he said. ( ^__^ )

gothliciouz

March 10, 2011 at 2:14pm

what about firefox and chrome? were they hacked too?

Belboz99

March 10, 2011 at 3:50pm

Chrome is un-pwned, for the 3rd year...

Firefox will have it's trial by fire tomorrow.

Connect with MaximumPC

Featured Content

Diablo 3: Our First Impressions

We Want YOU

To apply for a job writing for Maximum PC

No BS Podcast #185: No Star Wars

The gang discusses the GTX 690, Trinity, Ivy Bridge, Amazon, big-box stores, MMOs,...

10 of the Biggest Tech Stories We All Got Wrong

Nvidia GTX 690 Benchmarked

Nvidia's dual-GPU Kepler Card: we've run the numbers!

This month's issue

Feature

Build a PC On Any Budget

Feature

Cloud Services Showdown

How-To

Encrypt Your External Drive

Build It

Upgrade an X58 Rig

Most Commented Articles

123Comments

Microsoft Plans to Kill the Aero UI Prior To Final...

96Comments

Install Windows 8 Today

91Comments

Kepler Unveiled: Nvidia's GTX 680 Benchmarked In-...

84Comments

Know The Difference: Phasers vs Blasters And 8 Other...

82Comments

YouTube Video Shows How "Real People" React...

Latest Max PC Tweets

maximumpc: Original RickRoll Video Returns to YouTube After 24-Hour Copyright Hiatus http://t.co/MaH9Sxyy1 day 17 hours ago
maximumpc: Corsair has decided not to go forward with its $78 million IPO, citing weak equity market conditions http://t.co/A5a4DAzj1 day 17 hours ago
maximumpc: Want to work at Maximum PC? Our Online Managing Editor, Alex, is moving away, so we need a new one. http://t.co/9Z7JCh0E3 days 15 hours ago

MaximumPC on Facebook

Recommendations

IE8 and Safari First to Fall at Pwn2Own 2011

Here's What You Get:

More like this

Comments

Log in to MaximumPC directly or log in using Facebook

Connect with MaximumPC

Featured Content

This month's issue

Feature

Feature

How-To

Build It

Buy Subscription

Most Commented Articles

Latest Max PC Tweets

MaximumPC on Facebook