Slashdot Mirror

← Back to Stories (view on slashdot.org)

Chrome Hacked In 5 Minutes At Pwn2Own

Posted by samzenpus on Wednesday March 7, 2012 @01:07PM from the what-took-so-long? dept.

Skuto writes "After offering a total prize fund of up to $1M for a successful Chrome hack, it seems Google got what it wanted (or not!). No more than 5 minutes into the Pwn2Own cracking contest team Vupen exploited 2 Chrome bugs to demonstrate a total break of Google's browser. They will win at least 60k USD out of Google's prize fund, as well as taking a strong option on winning the overall Pwn2Own prize. It also illustrates that Chrome's much lauded sandboxing is not a silver bullet for browser security."

2 of 169 comments (clear)

Min score:

Reason:

Sort:

Re:Obviously they were just waiting to start by SpanglerIsAGod · 2012-03-07 13:12 · Score: 5, Informative

I think that's how most of the successful hacks have been going in this contest. Someone finds a few vulnerabilities, hordes them until the contest, and then goes public with them.

I'm not sure that I like that, but I guess it gets some vulnerabilities fixed.

--
War doesn't show who is right - just who is left.
Re:Conflated competitions? by Anonymous Coward · 2012-03-07 13:59 · Score: 5, Informative

The Pwn2Own twitter account actually talks quite a bit about this.
Additionally, it appears that Vupen has already announced they won't be participating in Google's competition.