MacBook Air Hacked in PWN 2 OWN Contest
MacBook Air Hacked in PWN 2 OWN Contest
by , 8:15 AM EDT, March 28th, 2008
Charlie Miller, also known for his iPhone hack, managed to walk away from CanSecWest's PWN 2 OWN contest with US$10,000 and a MacBook Air after successfully hacking into the portable computer. Mr. Miller was able to successfully hack the laptop after the rules of the contest were relaxed to allow for more than remote attacks, according to InfoWorld.
On the first day of the event, contestants unsuccessfully attempted to remotely hack into the Mac, a Windows PC, and a Linux PC. On the second day, however, Mr. Miller was able to gain control over the MacBook Air in only two minutes by directing a contest organizer to visit a specially crafted Web site with the laptop.
The Web site contained code that Mr. Miller developed specifically to hack into the Mac.
Exactly what the code did to the MacBook Air is a secret, and will remain that way until after the contest organizers can notify Apple of the exploit thanks to the nondisclosure agreement Mr. Miller was required to sign.
Since the relaxed contest rules on the second day prohibited attackers from using applications that weren't part of the standard OS installation, Mr. Miller likely took advantage of an undisclosed flaw in the Safari Web browser. Once Apple has been notified of the potential security flaw the company will likely issue an update that patches the threat.
Warning: include(/usr/local/etc/httpd/sites/macobserver.com/htdocs/forums/extension.inc) [function.include]: failed to open stream: No such file or directory in /var/www/bbm/macobserver.com/ee2/www/htdocs/comments/comments.php on line 108
Warning: include() [function.include]: Failed opening '/usr/local/etc/httpd/sites/macobserver.com/htdocs/forums/extension.inc' for inclusion (include_path='.:/usr/share/php5:/usr/share/php') in /var/www/bbm/macobserver.com/ee2/www/htdocs/comments/comments.php on line 108
Warning: include(/usr/local/etc/httpd/sites/macobserver.com/htdocs/forums/common.) [function.include]: failed to open stream: No such file or directory in /var/www/bbm/macobserver.com/ee2/www/htdocs/comments/comments.php on line 110
Warning: include() [function.include]: Failed opening '/usr/local/etc/httpd/sites/macobserver.com/htdocs/forums/common.' for inclusion (include_path='.:/usr/share/php5:/usr/share/php') in /var/www/bbm/macobserver.com/ee2/www/htdocs/comments/comments.php on line 110
Warning: include(/usr/local/etc/httpd/sites/macobserver.com/htdocs/forums/includes/bbcode.) [function.include]: failed to open stream: No such file or directory in /var/www/bbm/macobserver.com/ee2/www/htdocs/comments/comments.php on line 112
Warning: include() [function.include]: Failed opening '/usr/local/etc/httpd/sites/macobserver.com/htdocs/forums/includes/bbcode.' for inclusion (include_path='.:/usr/share/php5:/usr/share/php') in /var/www/bbm/macobserver.com/ee2/www/htdocs/comments/comments.php on line 112
Fatal error: Call to a member function sql_query() on a non-object in /var/www/bbm/macobserver.com/ee2/www/htdocs/comments/comments.php on line 532
Recent Headlines - Updated May 24th
- Fri, 6:22 AM
- TMO Quick Tip - Terminal: Using “lsof” When Files Won’t Delete
- Thu, 9:31 PM
- News - Judge Cote Likely to Side with U.S. Against Apple
- 7:02 PM
- Editorial - Microsoft Commercials Take Swipes at Apple’s iPad
- 5:59 PM
- Product News - Apple Updates Fuji-Xerox Printing & Scanning Drivers
- 4:57 PM
- Reuters Traces Apple’s Irish Operations Back to 1980
- 2:01 PM
- News - Apple Reportedly Plans WWDC Keynote for Monday, June 10th
- 1:15 PM
- Rumor - Analyst: iWatch Coming in 2014 with Biometrics
- 11:30 AM
- Editorial - Pondering Those Who Dis Apple’s CEO Tim Cook [VIDEO]
- 10:37 AM
- Mailbox, Now with iPad Support
- 9:41 AM
- News - Apple Says Samsung Galaxy S4 Violates 5 Patents
- 8:48 AM
- TMO Appearances - Jeff Gamet Talks Cool Mac Products on MyMac Podcast
- Wed, 8:28 PM
- Apple Context Machine Podcast - ACM 205: Apple Tax Hearings & Samsung’s Delusions
The Mac Observer Reader Specials
-
-
-
-
-
-
-
-
-
Support TMO, Buy from Amazon, MacMall and The Apple Store
