Close
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Applications
    • Applications
    • Cybersecurity
    • Development
    • Mobile

    Apple iPhone, RIM BlackBerry Fall at Pwn2Own Hacking Contest

    By
    Fahmida Y. Rashid
    -
    March 10, 2011
    Share
    Facebook
    Twitter
    Linkedin

      Research In Motion’s BlackBerry was brought low by WebKit-the same open-source technology behind Safari’s defeat-and the Apple iPhone was compromised by a flaw in MobileSafari on the second day of the hacking contest.

      A trio of researchers under the name Team Anon successfully exploited multiple WebKit vulnerabilities in a drive-by-download attack to compromise the BlackBerry Torch 9800 to win the Pwn2Own challenge on March 10. Security researchers took turns trying to compromise the Mozilla Firefox browser and two smartphones, the Apple iPhone and the RIM’s BlackBerry, during the second day of the Pwn2Own hacking contest at CanSecWest in Vancouver, British Columbia.

      Charlie Miller, a security researcher from Independent Security Evaluators who co-wrote the “Mac Hacker’s Handbook,” partnered with colleague Dion Blazakis to compromise the iPhone with a MobileSafari flaw. Miller had compromised the iPhone during past Pwn2Own contests.

      One contestant had signed up for Mozilla Firefox 3.6, but the browser survived. Two contestants had been scheduled to compromise Google Chrome on day one, but one was a no-show and Team Anon decided to focus its energies on the BlackBerry contest and no one else has signed up to try.

      “I *love* pwn2own! Safari and IE8 were cracked on the first day, but not Chrome,” Matt Cutts, the head of the Web spam team at Google, posted on Twitter.

      However, Chrome surviving so far doesn’t mean it can’t be hacked, just that none of the participating Pwn2Own researchers is aware of an exploitable security hole.

      BlackBerry contestants are required to compromise a BlackBerry Torch 9800 running BlackBerry OS 6.0.0.246. Team Anon, a three-man team consisting of Vincenzo Iozzo, Willem Pinckaers and Ralf Philipp Weinmann, chained an information disclosure bug to a separate integer overflow flaw in WebKit. The team proved it could compromise the smartphone by writing a file to the device and stealing both the contact list and image database.

      Since there is no public documentation of the BlackBerry operating system, the team ran several trial-and-error techniques to create the exploit, according to ZDNet’s Ryan Naraine. RIM recently added a WebKit browser to the BlackBerry, but the phone still doesn’t have address space layout randomization (ASLR), data execution prevention (DEP) or code signing, common security technologies on other mobile platforms. While it was “way behind the iPhone” from a security perspective, the BlackBerry benefited from its “obscurity,” Iozzo told Naraine.

      “It makes it a bit harder to attack a system if you don’t have documentation and information,” Iozzo said.

      Miller pointed the target iPhone’s MobileSafari browser to a rigged Website. On the first attempt at the drive-by-exploit, the browser crashed. Once relaunched, Miller was able to hijack the address book. Miller also used return oriented programming (ROP) techniques to bypass DEP, according to Naraine.

      The target iPhone had iOS 4.2.1, not iOS 4.3, which Apple released on March 9, the first day of the contest. The actual MobileSafari flaw remains unfixed in iOS 4.3 but the new addition of ASLR would block the winning exploit. However, it just means the exploit needs to be tweaked to deal with this layer of security, and the phone remains vulnerable until MobileSafari is patched, Miller said.

      RIM recently shipped a firmware update for the BlackBerry, but Pinckaers told Naraine that the WebKit flaw remains unpatched in the latest version. Members of the RIM security team were at the event and said they would be working with TippingPoint ZDI to ensure the vulnerabilities are fixed in new versions. Miller said Apple had already been notified about the MobileSafari flaw.

      TippingPoint didn’t have a schedule finalized for the third day at the time of writing. The Dell Venue Pro running Windows 7 and a Samsung Nexus S running Android are still left among the mobile platforms. And anyone is still allowed to sign up for Chrome and Firefox.

      CanSecWest offered more presentations along with the Pwn2Own contest. There was a presentation on how the Nintendo DS could be used to hijack the home network and spread malware, as well as another session on Adobe Flash ActionScript vulnerabilities and exploits. Another popular panel addressed installing rootkits on firewalls and unified threat management appliances from Juniper, SonicWall and others. What appears to have caught people’s attention, however, was a presentation on how to hack the popular Angry Birds game.

      “Just saw some guys inject malicious code into #angrybirds .. is nothing sacred?” Johnathan Norman, a hacker from Houston, posted on Twitter.

      Fahmida Y. Rashid

      MOST POPULAR ARTICLES

      Cybersecurity

      Visa’s Michael Jabbara on Cybersecurity and Digital...

      James Maguire - May 17, 2022 0
      I spoke with Michael Jabbara, VP and Global Head of Fraud Services at Visa, about the cybersecurity technology used to ensure the safe transfer...
      Read more
      Cloud

      Yotascale CEO Asim Razzaq on Controlling Multicloud...

      James Maguire - May 5, 2022 0
      Asim Razzaq, CEO of Yotascale, provides guidance on understanding—and containing—the complex cost structure of multicloud computing. Among the topics we covered:  As you survey the...
      Read more
      Big Data and Analytics

      GoodData CEO Roman Stanek on Business Intelligence...

      James Maguire - May 4, 2022 0
      I spoke with Roman Stanek, CEO of GoodData, about business intelligence, data as a service, and the frustration that many executives have with data...
      Read more
      Applications

      Cisco’s Thimaya Subaiya on Customer Experience in...

      James Maguire - May 10, 2022 0
      I spoke with Thimaya Subaiya, SVP and GM of Global Customer Experience at Cisco, about the factors that create good customer experience – and...
      Read more
      IT Management

      Intuit’s Nhung Ho on AI for the...

      James Maguire - May 13, 2022 0
      I spoke with Nhung Ho, Vice President of AI at Intuit, about adoption of AI in the small and medium-sized business market, and how...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2021 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×