It did not pass a day since Pwn2Own 2014 was vulnerable to Chrome Google and the company just updated its browser version, correcting her vulnerability.
Google Chrome 33.0.1750.152 για Mac και Linux και η version 33.0.1750.154 για Windows διορθώνουν τα σφάλματα που επέτρεψαν στους διαγωνιζόμνους του Pwn2Own να παραβιάσουν το program Google Browser.
Researchers at the famous VUPEN were rewarded with $ 100.000 for executing code out of the sandbox and a use-after-free Blink bindings.
This vulnerability has been corrected with the new version of Chrome, and Google says it will continue to work with researchers to enhance its security.
Vulnerabilities Corrected
Congratulations to VUPEN and an Anonymous submission for the Pwn2Own competition.
- [$ 100,000] [352369] Code execution outside sandbox. Credit to VUPEN.
- [$ 60,000] [352420] Code execution outside sandbox. Credit to Anonymous.
We should mention the immediate reaction time to repair the security gaps by the company. We all know that until 0Day is repaired by Microsoft for example they become γίνονται. 1000Day.
You can download the new version here