The tenth meeting – contest hacker at Pwn2Own 2017 continues successfully. The products που είχαν σαν στόχους οι ομάδες περιελάμβαναν λειτουργικά συστήματα, προγράμματα περιήγησης στο Web, νέες applications Επιχειρήσεων και server-side. Ο διαγωνισμός πραγματοποιείται από την Trend Micro Security και διαρκεί τρεις μέρες.
Στον διαγωνισμό προστέθηκαν σαν στόχοι και ο Adobe Reader, αλλά και ο Apache Web Server, από την επιτροπή του pwn2own 2017.
On the first day of Pwn2Own 2017, teams managed to successfully exploit vulnerabilities in Adobe Reader (twice), Apple Safari (twice), Microsoft Edge, and Ubuntu Desktop. Attacks against Google Chrome and Microsoft Windows failed.
On the second day, teams managed to beat Adobe Flash (twice), Microsoft Edge (twice), Apple Safari, Mac OS X, Firefox Mozilla, but also Windows successfully this time.
Other attacks against Firefox, Windows, Microsoft Edge, Mac OS X, failed, and were blocked.
The third day is expected to see three additional efforts against the following goals: Microsoft Edge (twice), and VMWare Workstation.
Pwn2Own 2017 The results so far:
Από την πλευρά των λειτουργικών συστημάτων τρεις διαφορετικές platforms παραβιάστηκαν με επιτυχία: Windows, Mac OS X και το Ubuntu Desktop.
On the side of browsers, Microsoft Edge, Firefox and Safari have been successfully compromised. An attempt against Chrome failed, and a second attack against Firefox also failed. Both Edge and Apple's Safari have been exploited many times.
Από την πλευρά των εφαρμογών τώρα, τα προϊόντα της Adobe, Flash player and Reader were violated (unsurprisingly) successfully many times.
Surprisingly, it has been the many times of Edge's breach, which Microsoft mentions as the most secure browser.
Keep in mind that other Chromium-based browsers, such as Vivaldi or Opera, were not in the products that the teams chose to compete.
You can see videos with the results of the first day below.
Additional information for this year's Pwn2Own contest is available on the blog TrendMicro Zero Day Initiative.
