tqbf - Slashdot User

Submission + - New Details On OS X Bug: Firefox Also Vulnerable

Submitted by on Saturday April 21, 2007 @02:45PM

An anonymous reader writes: More details have emerged about the MacOS X vulnerability Dino Dai Zovi developed to win the $10,000 CanSec PWN-2-0WN challenge; contrary to CNet's report, the vulnerability involves Java applets, and affects FireFox as well as Safari. MacOS X users can disable Java support in their browsers to mitigate the vulnerability.

http://www.matasano.com/log/806/hot-off-the-matasa no-sms-queue-cansec-macbook-challenge-won/

Submission + - Fully updated OSX Box Hacked

Submitted by

Guanine

on Friday April 20, 2007 @06:58PM

Guanine writes: "The security blog Matasano Chargen recently reported that at the CanSecWest Applied Security Conference, a MacBook Pro with all the latest patches was successfully hacked. A vulnerability and exploit in Safari were developed by Dino Dai Zovi, then leveraged by Shane MacCauley to "get a shell with user level privilages." The reward is $10,000 and the hacked MacBook Pro."

Submission + - Researchers win $10000 in OS X Security Challenge

Submitted by crackman on Friday April 20, 2007 @06:57PM

crackman writes: Today at the CanSecWest security conference, Shane Macaulay demonstrated a client side vulnerability and exploit developed overnight by Dino Dai Zovi of Matasano Security to win the PWN 2 0WN contest. The pair walks away with the recently raised bounty of $10000 as well as the MacBook used in the demonstration. Matasano has promised details of the vulnerability will be disclosed at a later date.

Slashdot Top Deals