The Active Network
ActiveMac Anonymous | Create a User | Reviews | News | Forums | Advertise  
 

  *  

  Hackers steer clear of Google Chrome, say too challenging
Time: 12:15 EST/17:15 GMT | News Source: ZDNet | Posted By: Robert Stein

At the CanSecWest security conference in Vancouver BC, hackers were invited to find and exploit holes in modern browsers. A popular target for hackers at this year’s conference was Safari on a Mac — definitely the lowest hanging fruit. Charlie Miller explains that it’s not whether a product has holes (all of them do), its how easy it is to exploit those holes — and on a Mac, it’s very simple.

For more info

Write Comment
Return to News

  Displaying 1 through 25 of 346
Last | Next
  The time now is 7:22:32 AM ET.
Any comment problems? E-mail us
#1 By 23275 (24.196.4.141) at 3/24/2009 12:43:17 PM
for those that think that google is doing anything unique from IE7/8 on Vista, or Windows 7,
think again, http://blog.chromium.org/2008/10/new-approach-to-browser-security-google.html They're getting a bucket load of credit that should go to Microsoft.

See also items 9 and 10 of my favorite things about Vista written when it released in 06.
http://blog.libertech.net/blogs/lketchum/archive/2007/05/23/top-ten-things-i-love-about-windows-vista.aspx

Specifically,
10 - Windows Vista's Integrity Mechanism Windows Vista includes an addition to the access control security mechanism of Windows that labels processes and other securable objects with an integrity level. Internet-facing programs are at higher risk for exploits than other programs because they download untrustworthy content from unknown sources. Running these programs with fewer permissions, or at a lower integrity level, than other programs reduces the ability of an exploit to modify the system or harm user data files. Internet Explorer 7 in Windows Vista uses the Integrity Mechanism and it is what is behind IE 7's Protected Mode. But That is only the beginning - ANY developer has access to the tools that make this possible and it gets better, any single process may be executed in this space, or any grouping of them - so the parts of an application that face the Internet should use them. Think of these as objects, or securable objects in MS speak - see, http://msdn2.microsoft.com/en-us/library/aa379557.aspx also see, http://msdn.microsoft.com/library/default.asp?url=/library/en-us/IETechCol/dnwebgen/ProtectedMode.asp

9 - User Interface Privilege Isolation (UIPI) prevents processes from sending selected window messages and other USER APIs to processes running with higher integrity. If UAC and Protected Mode are straight rights in Vista's security arsenal, the UIPI is one of Vista's stiff jabs. UIPI continually counters attempts to escalate processes and it keeps bad-guy-code off balance. At the same time, it provides developers with an easy way to check process escalation without burning the user experience. Go here to learn how to use it, http://msdn2.microsoft.com/en-us/library/ms644950.aspx

Take special note of Google's own admissions: How does the sandbox work?


The sandbox uses the security features of Windows extensively; it does not reinvent any security model.


To understand how it works, one needs a basic understanding of the Windows security model. With this model all processes have an access token. This access token is like an ID card, it contains information about the owner of the process, the list of groups that it belongs to and a list of privileges. Each process has its own token, and the system uses it to deny or grant access to resources.


These resources are called securable objects. They are securable because they are associated with an access control list, or security descriptor. It contains the security settings of the object. The list of all the users and groups having access to the resource, and what kind of access they have (read, write, execute, etc) can be found there. Files, registry keys, mutexes, pipes, events, semaphores are examples of securable objects.

#2 By 92283 (70.67.3.196) at 3/24/2009 12:52:13 PM
"Let me correct something. It was a Firefox on Mac OS X vulnerability and exploit.

The bug does affect Windows but, honestly, it’s way harder to get the code to run reliably on Windows. That’s the reason I did my Firefox attack on the Mac.

I’m not allowed to talk about it but, for that bug, to get real exploitation on Windows is difficult because of ASLR (Address Space Layout Randomization) and DEP (Data Execution Prevention).

On the Mac, I could trigger it and exploit it easily."

http://blogs.zdnet.com/security/?p=2951

#3 By 15406 (216.191.227.68) at 3/24/2009 3:37:22 PM
Nils says Hi!

#4 By 23275 (24.196.4.141) at 3/24/2009 8:43:53 PM
Latch, the subject deserves a better response from you than that. Clearly and flatly, our industry press has given Google credit it does not directly deserve and a pass on top of it.

That takes nothing from Nils' work, or his decision not to target Google's Chrome. When asked, in an indirect way, the exchange went this way: Did you use the Dowd/Sotirov techniques from Black Hat last year?

I really appreciated their work [smiles].
(from Ryan Naraine @ 5:25 am at Zdnet Blogs)

So, a Browser Memory Protection Bypasses has been discovered in pre-RTM IE8 on Win7 BETA. The question is then: "does this bypass also apply to Chrome, or is it unique to pre-RTM IE8?" There one tell to suggest that does not - in that the exploit would not work on Vista and IE 7 - this is telling and insteresting. (Hmmm, so it wasn't COM/DCOM....)

It seems that Nils found a flaw that provided for process escalation out of Protected Mode and around UAC in the BETA. I wonder if it would work in later builds 48, or 57?

#5 By 15406 (99.240.65.32) at 3/24/2009 9:42:27 PM
#4: These guys don't just show up on the day of the event and then dither about what they're going to do. They plan in advance. I suspect that if Nils could have used the same hack to penetrate Chrome, he would have and walked away with more money & hardware. In your usual rush to praise Microsoft, I don't think you give Google enough credit. Despite all the protections, IE was compromised and Chrome was not. Despite that, you portray it as a feather in Windows' cap. Bizarre.

There one tell to suggest that does not - in that the exploit would not work on Vista and IE 7

How do you know this?

#6 By 23275 (24.196.4.141) at 3/24/2009 10:39:41 PM
There one tell to suggest that does not - in that the exploit would not work on Vista and IE 7

How do you know this?

Because Nils said exactly that. I quote: "Does it affect earlier versions of IE?

I don’t know. I wasn’t able to trigger it in IE 7" end quote.

I want to know if the process was brokered by the UIPI at all? That's the question and if not, why not? As I wrote two years ago, the methods and tools to take advantage of securable objects, and the UIPI are available for all developers - they are very well documented. I'm glad Google uses them in Chrome and wish FF and Safari would, too. In fact, I'd like to see all applications that face the Internet in any way, use them.

#7 By 23275 (24.196.4.141) at 3/24/2009 10:49:17 PM
there's another interesting comment made that also suggests it was not COM/DCOM and does not work in IE 7 on Vista.

Nils noted that with new features come new vulnerabilities - or words to that effect.

True. So one of the new features with a bypass flaw in pre-RTM IE8 and perhaps IE 8 RTM, may have been found - accelerators? Slices? In Private Browsing? Suggested Sites? Hard to say and it will be very interesting to learn what it was and I think we will, soon - MS started on validations nearly immediately and is likely working up a patch. This Nils fellow is really something - brilliant and responsible. I'm glad he's on the "good team" and working to see software patched and made more secure. He deserves high praise in all regards.

There are those that have been critical of him for sitting on an OS X/Safari bug for a year, but seriously... would anyone in the Apple camp really listen to him...? It does seem that if anyone so much as peeps about an Apple product, that large numbers of fans jump them... So I don't fault him for remaining silent about it and he as said clearly, he expects to be rewarded for his work Good. Good on him and for him.

#8 By 37 (192.251.125.85) at 3/25/2009 7:07:54 AM
IE8 > Chrome > FF 3.01 > IE7

#9 By 254367 (125.164.237.42) at 11/19/2009 1:04:27 AM
http://related-searches.blogspot.com
http://google-top-search.blogspot.com
http://google-top-trend.blogspot.com
http://online-news-today.blogspot.com
http://entertainment-news-today.blogspot.com
http://news-gadget-new.blogspot.com
http://laptop624.blogspot.com
http://tcellphone.blogspot.com
http://videoplane.blogspot.com
http://ncellphone.com
http://yznews.co.cc

#10 By 4240821 (213.139.195.162) at 10/27/2023 8:03:14 AM
https://sexonly.top/get/b845/b845lbbqywctwlkopqy.php
https://sexonly.top/get/b677/b677yrgftkxbhtnrrjs.php
https://sexonly.top/get/b916/b916beoeihlyohlqmcy.php
https://sexonly.top/get/b329/b329simdbyuihcmbcwp.php
https://sexonly.top/get/b139/b139mriknjookvrtwhq.php
https://sexonly.top/get/b864/b864wwqiodlmfeqxllj.php
https://sexonly.top/get/b365/b365wiwikvupqeyxpjr.php
https://sexonly.top/get/b891/b891atkejilajazibxl.php
https://sexonly.top/get/b189/b189fzccfxhjtusokmy.php
https://sexonly.top/get/b81/b81hzytlvbaptislmv.php
https://sexonly.top/get/b816/b816xbaytvqavzaaili.php
https://sexonly.top/get/b66/b66aabxcxtntyxozel.php
https://sexonly.top/get/b267/b267xhdflbhnlquccsy.php
https://sexonly.top/get/b691/b691omktkvvajirzouo.php
https://sexonly.top/get/b212/b212apqqemqjlybnusc.php
https://sexonly.top/get/b477/b477ufcjshxgryhawbt.php
https://sexonly.top/get/b884/b884wjltnlyuiqtxzci.php
https://sexonly.top/get/b387/b387nirgbdcrufvwzfc.php
https://sexonly.top/get/b850/b850ntjqgtubyqelsut.php
https://sexonly.top/get/b325/b325lbmgaqhzhwdtslf.php
https://sexonly.top/get/b489/b489rcleqaiihepnvbt.php
https://sexonly.top/get/b471/b471kyvrypcoekokwxe.php
https://sexonly.top/get/b857/b857dipdyfoxzpebzlo.php
https://sexonly.top/get/b910/b910bxunltczdfrdsit.php
https://sexonly.top/get/b32/b32qhnxlwlytmvvlug.php
https://sexonly.top/get/b108/b108ooexxlmzclyaypp.php
https://sexonly.top/get/b485/b485lgfwagxupdtxvla.php
https://sexonly.top/get/b181/b181npielwqbklwlukn.php
https://sexonly.top/get/b37/b37ytvvtzyzbpxzatu.php
https://sexonly.top/get/b191/b191jwsjlqjnfzbikuk.php
https://sexonly.top/get/b81/b81xegddethydmywkt.php
https://sexonly.top/get/b40/b40lkjvqlghjmhumxb.php
https://sexonly.top/get/b508/b508rparkyucjgmydna.php
https://sexonly.top/get/b228/b228unfhidqhmypoxvc.php
https://sexonly.top/get/b269/b269gkplqopxsyefgiy.php
https://sexonly.top/get/b976/b976mwigmkyasxovpab.php
https://sexonly.top/get/b313/b313udejkgexdnbvaqv.php
https://sexonly.top/get/b241/b241qrvplhrllfidnju.php
https://sexonly.top/get/b524/b524yiyjmbchpadykzl.php
https://sexonly.top/get/b403/b403sfgdynltdjvleqi.php
https://sexonly.top/get/b999/b999mtjzpndbdughqrl.php
https://sexonly.top/get/b837/b837auxgstomqxpxuse.php
https://sexonly.top/get/b614/b614ynjyahvtxloziyu.php
https://sexonly.top/get/b454/b454ngffnduyqllqzhe.php
https://sexonly.top/get/b3/b3nzzrggjauhcesmg.php
https://sexonly.top/get/b754/b754fzoqogtrhcomkqr.php
https://sexonly.top/get/b690/b690gbgmuhylgwatuuv.php
https://sexonly.top/get/b338/b338nnqaidacalhgeoj.php
https://sexonly.top/get/b48/b48iulvxwxeatatepe.php
https://sexonly.top/get/b341/b341nblnoipyfopunpb.php

#11 By 4240821 (103.151.103.150) at 10/30/2023 5:04:53 PM
https://www.quora.com/profile/AntonioCrayton954/punker308-janeth-rubio-1-MrandMrsSEXYcoupleKC-jesseparker2021-Cinnamonbumbum-mackenzie-page-boosteddsm87-a
https://www.quora.com/profile/AndySmith567/Curvy-Cassy-bigbootydidit-sunnnluvngirrrl-vicewitch-thenasty2-Jenny-Bee-Candyredxx-GhostieGhoo-LittleRed
https://www.quora.com/profile/DavidVasquez320/ANORMAL_SHOW-Hot-momma-Leslie_2021-UndyingClay-Soph_is_playing-Montana-smiles-Alexandra-Nice-MamaWithMilk
https://www.quora.com/profile/CaseyPuffen99/Bvnnycakes-LewdandRudeeee-Jessy-Taylor-tinybutwild-BellaSweetX-BBWbeauty95-reika-toriya-Alex_Meier-DaniP
https://www.quora.com/profile/NicoleLee796/Lauraamherst-BigBoobsDeria-BlondeHoney5432-NikiSpencer-momo199-Peachy-and-Daddy-Dick-CosmicBabeLostinSpace
https://www.quora.com/profile/JenniferBogdan560/SugarPissPrincess-Carvisk-Erzsebet-L3wd-Waifu-Miss-Rochelle-Laceypage88-KCUndercovers-Kerriraye-RandR436
https://www.quora.com/profile/SamuelHolmes495/yukina-mori-Badddlilbit-Sexolicos-Chloe-Capone-Bunny-Foofoo-SweetPerfection-Carameloduro87-EmaEliot-kate
https://www.quora.com/profile/AngieMankad237/killerkitten13-dirtydaphne-blucntrl-zazi-1-DirtyFit-Lola-Lovegood-Mable-arecoveringfeminist-medusa-1-b
https://www.quora.com/profile/TylerWeiss912/kristine-kahill-Alissa-Noir-fit_kitty-h3yPaula-MsFault69-missa_alissaxxo-Cashbaby_-evadream-Maria-Nae
https://www.quora.com/profile/JoshuaMerritt372/Aria-Giovanni-bigd_littlec-JuiceyJay-blacksheep27-payivygrey-kylieee9-Rinhappy1217-LenaLuna777-Sora_to

#12 By 4240821 (103.152.17.80) at 10/31/2023 7:01:11 AM
https://app.socie.com.br/read-blog/97530
https://app.socie.com.br/MzkreamdollLiddleBxby
https://app.socie.com.br/read-blog/97646
https://app.socie.com.br/read-blog/98251
https://app.socie.com.br/read-blog/97547
https://app.socie.com.br/read-blog/97233
https://app.socie.com.br/read-blog/97509
https://app.socie.com.br/read-blog/97687
https://app.socie.com.br/KimcamsTmptshnn
https://app.socie.com.br/read-blog/97637

#13 By 4240821 (103.151.103.150) at 10/31/2023 7:20:52 PM
https://app.socie.com.br/read-blog/97798
https://app.socie.com.br/read-blog/98336
https://app.socie.com.br/read-blog/97570
https://app.socie.com.br/xLilDioM3ta4gasms_naya
https://app.socie.com.br/read-blog/98499
https://app.socie.com.br/APrettyRebelMistressLolaFilms
https://app.socie.com.br/read-blog/97608
https://app.socie.com.br/NatashaDaaeLittlebaby4u
https://app.socie.com.br/read-blog/97594
https://app.socie.com.br/read-blog/98846

#14 By 4240821 (62.76.146.75) at 11/1/2023 7:22:33 PM
http://activewin.com/mac/comments.asp?ThreadIndex=83042&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=20826&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=547&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=54811&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=83312&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=33402&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=15120&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=53232&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=19708&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=24267&Group=Last

#15 By 4240821 (2.57.151.31) at 11/1/2023 8:23:17 PM
http://activewin.com/mac/comments.asp?ThreadIndex=19548&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=55500&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=17488&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=1072&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=3691&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=73406&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=59664&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=17384&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=8740&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=56912&Group=Last

#16 By 4240821 (212.193.138.10) at 11/3/2023 8:00:11 PM
http://activewin.com/mac/comments.asp?ThreadIndex=29026&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=9010&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=2640&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=72637&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=54837&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=71760&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=76760&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=35884&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=72033&Group=Last
http://activewin.com/mac/comments.asp?ThreadIndex=72226&Group=Last

#17 By 4240821 (109.94.216.41) at 11/5/2023 1:46:46 AM
https://hotslutss.bdsmlr.com/post/658320680
https://hotslutss.bdsmlr.com/post/660538036
https://hotslutss.bdsmlr.com/post/658993857
https://hotslutss.bdsmlr.com/post/653262966
https://hotslutss.bdsmlr.com/post/654700662
https://hotslutss.bdsmlr.com/post/653125014
https://hotslutss.bdsmlr.com/post/649548982
https://hotslutss.bdsmlr.com/post/655519052
https://hotslutss.bdsmlr.com/post/661283766
https://hotslutss.bdsmlr.com/post/657367299

#18 By 4240821 (92.119.163.194) at 11/6/2023 1:47:25 AM
https://printable-calendar.mn.co/members/19900474
https://printable-calendar.mn.co/members/19915610
https://printable-calendar.mn.co/members/19894148
https://printable-calendar.mn.co/members/19894030
https://printable-calendar.mn.co/members/19914922
https://printable-calendar.mn.co/members/19895574
https://printable-calendar.mn.co/members/19919452
https://printable-calendar.mn.co/members/19897659
https://printable-calendar.mn.co/members/19898151
https://printable-calendar.mn.co/members/19911216

#19 By 4240821 (62.76.146.75) at 11/8/2023 4:05:20 PM
https://www.hackerearth.com/@suppkritdabre1983
https://www.hackerearth.com/@storovirar1973
https://www.hackerearth.com/@scardupmithats1972
https://www.hackerearth.com/@coamursuhor1971
https://www.hackerearth.com/@ibsudidult1989
https://www.hackerearth.com/@ceireaktazi1971
https://www.hackerearth.com/@imtracentwit1970
https://www.hackerearth.com/@abaletproc1987
https://www.hackerearth.com/@procatmenbia1976
https://www.hackerearth.com/@clarobmarmo1988

#20 By 4240821 (45.146.26.215) at 11/10/2023 4:43:28 PM
http://www.ttbizonline.com/pro/20231109100102
http://www.ttbizonline.com/pro/20231109061107
http://www.ttbizonline.com/pro/20231109101441
http://www.ttbizonline.com/pro/20231109170911
http://www.ttbizonline.com/pro/20231109153811
http://www.ttbizonline.com/pro/20231109142940
http://www.ttbizonline.com/pro/20231109202218
http://www.ttbizonline.com/pro/20231109113535
http://www.ttbizonline.com/pro/20231109110022
http://www.ttbizonline.com/pro/20231109085201

#21 By 4240821 (109.94.216.41) at 11/11/2023 10:11:22 AM
https://www.mddir.com/company/suugar-plum-manyvids-leak/
https://www.mddir.com/company/evie-nyx-manyvids-leaked/
https://www.mddir.com/company/pinkskye2022-onlyfans-leaked/
https://www.mddir.com/company/katherine2709-onlyfans-leaked/
https://www.mddir.com/company/katherine2709-onlyfans-leaked/
https://www.mddir.com/company/lisa-gali-onlyfans-leak/
https://www.mddir.com/company/brookie-xoxo-cookie-patreon-leaked/
https://www.mddir.com/company/daisy_dark0-patreon-leaked/
https://www.mddir.com/company/mysluttyeviltwin-clips4sale-leak/
https://www.mddir.com/company/_babewiththepower_-fansly-leak/

#22 By 4240821 (194.190.178.141) at 11/12/2023 9:41:54 PM
https://instem.res.in/comment/reply/3774/720505
https://instem.res.in/comment/reply/3667/720464
https://instem.res.in/comment/reply/2557/720341
https://instem.res.in/comment/reply/2557/720168
https://instem.res.in/comment/reply/3774/720422
https://instem.res.in/comment/reply/3627/720524
https://instem.res.in/comment/reply/2563/720537
https://instem.res.in/comment/reply/3341/720473
https://instem.res.in/comment/reply/2557/720327
https://instem.res.in/comment/reply/3627/720524

#23 By 4240821 (45.146.26.215) at 11/13/2023 12:10:40 PM
https://telegra.ph/Bradyyoung-Camgirl-Clips4sale-Leaked-11-21
https://sexonly.top/get/b502/b502isiolycqipniqyr.php
https://sexonly.top/get/b728/b728rmcngxtymycavft.php
https://sexonly.top/get/b376/b376pghkbqjgkgctwfi.php
https://sexonly.top/get/b359/b359vuapaqlkqwwspag.php
https://sexonly.top/get/b710/b710dlldkllnulcztod.php
https://sexonly.top/get/b553/b553ofxabjedjtozjuj.php
https://sexonly.top/get/b538/b538eidbfzqaozrgeql.php
https://sexonly.top/get/b263/b263hpjgsjuqfongwzw.php
https://sexonly.top/get/b580/b580ihouosqnqwkwnuq.php

#24 By 4240821 (62.76.153.10) at 11/15/2023 12:04:31 AM
https://sexonly.top/get/b698/b698cryoqlwybcxkjsz.php
https://sexonly.top/get/b943/b943kxzjkjwltcpiuyx.php
https://sexonly.top/get/b374/b374wmskogangeaveom.php
https://sexonly.top/get/b960/b960zoxxafrdnyxiruc.php
https://zmut.com/pin/213124562202054896
https://sexonly.top/get/b86/b86qdberteughzwniz.php
https://sexonly.top/get/b527/b527skjvutccldbyjwg.php
https://sexonly.top/get/b491/b491cjsbjdvhninlqmy.php
https://sexonly.top/get/b907/b907guxuhrzeawpjjzf.php
https://sexonly.top/get/b721/b721ndgdsuzerhqtxty.php

#25 By 4240821 (2.57.151.31) at 11/15/2023 11:09:53 PM
https://sexonly.top/get/b309/b309lqbygkabkxqvpbp.php
https://sexonly.top/get/b293/b293jbfbeqkufwgdcxh.php
https://sexonly.top/get/b739/b739pqcsrtodamuwwyt.php
https://sexonly.top/get/b16/b16fqfuwsyjjmqwmsb.php
https://sexonly.top/get/b854/b854jiofajcszkpmlet.php
https://sexonly.top/get/b101/b101jsaucggdabxtnjf.php
https://sexonly.top/get/b332/b332hddesqvpvlgcfma.php
https://sexonly.top/get/b259/b259lvlmphapcgjcqdr.php
https://sexonly.top/get/b255/b255xrmayahibuyqvuy.php
https://sexonly.top/get/b781/b781wcvlxdcgignyivm.php

Write Comment
Return to News
  Displaying 1 through 25 of 346
Last | Next
  The time now is 7:22:32 AM ET.
Any comment problems? E-mail us
User name and password:

 

  *  
  *   *