Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Mozilla Firefox and Microsoft Edge browsers were lost at the Pwn2Own 2019 hack contest
At the 2019 Pwn2Own hack contest in Vancouver, Canada, security experts successfully hacked both Firefox and Microsoft Edge browsers.
This is the first time Firefox has been compromised by exploiting a JIT Bug error and a record in the Windows kernel. After redirecting Firefox access to a phishing site, this technique allows running code at the system level and taking up the entire machine. With this achievement, two security houses, Amat Cama and Richard Zhu of Fluoroacetate team, received 50 thousand USD.
Mozilla Firefox and Microsoft Edge browsers were lost at the Pwn2Own 2019 hack contest Picture 1
Another expert named Niklas Baumstark also successfully hacked the Firefox browser with sandbox device exploitation, bug JIT bugs and logic errors. With this technique, Baumstark captured the control and control of the computer as an administrator. With this performance Baumstark also received a reward of 40,000 USD.
In addition, the Fluoroacetate team also held a more complex attack, using VMWare Workstation virtual machine to exploit the Microsoft Edge vulnerability. Security experts have implemented code snippets on virtual machine monitoring software (hypervisor) and hacked into Windows worms to expose vulnerabilities within the browser. After successfully hacking Microsoft Edge, they also received a prize of $ 130,000.
Mozilla Firefox and Microsoft Edge browsers were lost at the Pwn2Own 2019 hack contest Picture 2
Fluoroacetate team security experts are hacking Microsoft Edge.
Microsoft Edge was also successfully hacked by another expert named Arthur Gerkis of Exodus Intelligence team based on logic errors, helping him to surpass the sandbox device. This impressive performance of the guy received $ 50,000 in bonuses.
These vulnerabilities will be sent to Mozilla Firefox and Microsoft Edge to Mozilla and Microsoft to patch in future updates.
At the Vancouver 2019 Pwn2Own contest, security experts showed 8 successful vulnerability and hack exploits for Microsoft Edge, Safari, Firefox, VMware Workstation and Virtualbox. They received a total prize value of up to 510 thousand USD.
David PacYou should read it
- Summarizing the Pwn2Own 2019: Safari, VirtualBox was 'pierced' on the first day, Firefox, Edge on the second day and Tesla Model 3 'closed the window'
- Mozilla Firefox - Free, fast and private web browser
- Appearing a zero-day vulnerability in Firefox, Mozilla advises users to update to the latest version immediately
- Mozilla is about to launch a new browser for developers on November 10
- New vulnerability in Mozilla Firefox allows third parties to access a saved password store
- Microsoft Edge is the best browser to prevent phishing
- Mozilla blocked the vulnerability for Firefox
- Microsoft Edge has been accused of stealing data from Firefox on Windows 10
- Import Bookmarks from another browser into Microsoft Edge
- Too embarrassed, Microsoft engineers had to install Google Chrome in the middle of the presentation because Edge kept crashing
- How to block hateful ads on Microsoft Edge browser
- Microsoft claims Edge overcomes Chrome and Firefox, becoming the world's best browser
Maybe you are interested
Microsoft's official Windows 11 virtual machine is no longer available
How to remove Microsoft Edge on Windows 11
Microsoft makes major improvements to Windows Update, updates will be installed much faster
Microsoft Word or Google Docs is better for you?
Distinguishing Microsoft 365 and Office 2024
Microsoft's foldable smartphone won't have a crease
Technology story
Telegram allows you to delete a received message from the sender's device- Adding a close friend to leave Facebook, CEO Mark Zuckerberg is growing solitary in his own 'home'
- CEO Tim Cook: You can succeed without a University diploma
- What happens if some of the billions of chip transistors fail?
- Sea cable incidents APG, IA: 3G / 4G mobile Internet users feel the most influential
- Users who have not updated the WinRAR patch, despite being warned, continue to take advantage of the vulnerability to insert malicious code.
Telegram allows you to delete a received message from the sender's device
Adding a close friend to leave Facebook, CEO Mark Zuckerberg is growing solitary in his own 'home'
CEO Tim Cook: You can succeed without a University diploma
What happens if some of the billions of chip transistors fail?
Sea cable incidents APG, IA: 3G / 4G mobile Internet users feel the most influential
Users who have not updated the WinRAR patch, despite being warned, continue to take advantage of the vulnerability to insert malicious code.