Pwn2own Contest 2011: Apple Safari 5, first to fall, hacked in 5 seconds

Apple‘s much hyped Safari browser was hacked in 5 seconds at the 2011 Pwn2own annual computer hacking contest. A French pen-testing firm VUPEN hacked Apple’s Safari web browser using a zero-day flaw to win the coveted Pwn2Own hacker challenge.

This year the web browser targeted were the latest release candidate (at the time of the contest) of the following products:

  • Microsoft Internet Explorer
  • Apple Safari
  • Mozilla Firefox
  • Google Chrome

Each browser would be installed on a 64-bit system running the latest version of either OS X or Windows 7.

Safari on MacBook was the first to fall at Pwn2Own 2011!

A team of security researchers from the French pen-testing firm VUPEN successfully exploited a zero-day flaw in Apple’s Safari browser to win this year’s Pwn2Own hacker challenge.

VUPEN co-founder Chaouki Bekrar lured a target MacBook to a specially rigged website and successfully launched a calculator on the compromised machine.

The hijacked machine was running a fully patched version of Mac OS X (64-bit).

The Pwn2Own event, being held at the CanSecWest security conference in Vancouver, allows companies to challenge hackers to exploit their operating systems and web browsers.

Posted by on , in Category Security with Tags
Anand Khanse is the Admin of TheWindowsClub.com, a 10-year Microsoft MVP Awardee in Windows (2006-16) & a Windows Insider MVP. Please read the entire post & the comments first, create a System Restore Point before making any changes to your system & be careful about any 3rd-party offers while installing freeware.