A French research team has Microsoft’s Internet Explorer 9, at the Pwn2Own contest hacked via two zero-day vulnerabilities. The hack is similar to that which Thursday, Chrome was felled, and also works on IE6 to 10.
The hack made use of two exploits in the Internet Explorer browser, reports ZDNet. The French team Vupen made use of a previously found bug to the security mechanisms data execution protection and address space layout randomization bypass, and a second exploit to get out of IE’s sandbox to escape. The method is thus similar to the hack that Thursday, Google Chrome was cracked.
For the hack was not gebruikershandeling is required, except the visit of a certain website. As soon as that happened, could any code be executed. For the contest was the calc.exe program is executed.
According to Vupen, the exploit has long been in the Internet Explorer, so long that they are also in IE6 can be exploited and probably also in IE10. The team had to own say two researchers six weeks of the browser to examine the exploits to find. Vupen is only the hacks for dep and aslr enabled. The hack for the sandbox is kept secret, in order to sell to the customers of the controversial company.
The exploit that Google Chrome yesterday in five minutes, it was hacked in the Pwn2Own contest was, according to Justin Schuh of Google a hack on the Flash plug-in, which is standard in Chrome. In the Pwnium competition run by Google itself, it was still an exploit in Chrome found, which exploited could be by the Russian Sergey Glaznov. That vulnerability has now been patched. About which vulnerability the exactly was is not clear; Google speaks in the patch of a “UXSS and bad history navigation” issue.
