IE、Chrome、Firefox和Safari在Pwn2Own年度黑客大赛均被攻陷 附Pwn2Own 2015战绩表
在近日的2015年年度Pwn2Own黑客大赛上,黑客们又让我们看到了世界各大巨头的产品们各种被攻陷的场景。
之前我们曾报道中国团队在Pwn2Own上攻破IE浏览器和Flash,来自韩国的黑客后攻破Chrome和Safari。
韩国黑客Jung Hoon Lee利用缓冲区溢出竞态状态攻破了稳定版和beta版的Chrome,然后利用两个Windows内核驱动的信息泄露和竞态状态获取了系统访问权限。
韩国的黑客Jung Hoon Lee赢得了Pwn2Own历史上最高的单次利用奖金——11万美元,而他在一天内共赢得22.5万美元。
Chrome的漏洞让他赢得了7.5万美元,Windows权限提升漏洞又获得了2.5万美元,再加上Google的Project Zero额外提供的1万美元奖金,总共11万美元。
这并不是他一天内唯一的成就,Lee利用TOCTOU漏洞攻陷了IE11获得了6.5万美元,利用未初始化堆栈指针漏洞攻破了Safari又获得了5万美元。
Firefox浏览器则在不到一秒内被攻破,安全专家ilxu1a因此获得了1.5万美元的奖金,目前Mozilla已发布修复版的Firefox,Firefox可以去更新下。
在两天比赛中,Windows曝出了5个漏洞,IE 11 4个,Firefox 3个,Adobe Reader和Flash分别有3个,Safari 2个,Chrome 1个。
附Pwn2Own 2015战绩表:
Targets | Prizes | Contestants |
---|---|---|
Google Chrome (64-bit) on Windows | $75,000 | ilxu1a, JungHoon Lee (lokihardt) |
Microsoft Internet Explorer 11 (64-bit with EPM-enabled) | $65,000 | JungHoon Lee (lokihardt), “360Vulcan Team” |
Mozilla Firefox on Windows | $30,000 | ilxu1a, Marius Mlynski |
Adobe Reader running in Internet Explorer 11 (64-bit with EPM-enabled) | $60,000 | KeenTeam, Nicolas Joly |
Adobe Flash (64-bit) running in Internet Explorer 11 (64-bit with EPM-enabled) | $60,000 | KeenTeam, Nicolas Joly |
Apple Safari (64-bit) on Mac OS X | $50,000 | JungHoon Lee (lokihardt) |
Targets | Contestant | Results and Prizes |
---|---|---|
Adobe Flash | Team509 and KeenTeam | Success: $60K USD plus $25K (escalation privilege bug) |
Adobe Flash | Nicolas Joly | Success: $30K USD |
Adobe Reader | Nicolas Joly | Success: $60K USD |
Adobe Reader | KeenTeam and Tencent PCMgr | Success: $30K USD plus $25K (escalation privilege bug) |
Mozilla Firefox | Mariusz Mlynski | Success: $30K USD plus $25K (escalation privilege bug) |
Microsoft IE11 | 360Vulcan Team | Success: $32,500 USD |
Mozilla Firefox | ilxu1a | Success: $15,000 USD |
Microsoft IE11 | JungHoon Lee (lokihardt) | Success: $65K USD |
Google Chrome | JungHoon Lee (lokihardt) | Success: $75K USD plus $25K (escalation privilege bug) plus $10K bug in Chrome beta |
Apple Safari | JungHoon Lee (lokihardt) | Success: $50K USD |
Google Chrome | ilxu1a | Unsuccessful within time limit |
(上述图表来自Pwn2Own官网)