Windows 11, Tesla, macOS & Ubuntu Desktop Hacked – Pwn2Own Day One

by Esmeralda McKenzie
Windows 11, Tesla, macOS & Ubuntu Desktop Hacked – Pwn2Own Day One

Windows 11, Tesla, macOS & Ubuntu Desktop Hacked – Pwn2Own Day One

Pwn2Own Day One

On the first day, Pwn2Own Vancouver 2023 hacking situation contributors compromised Dwelling windows 11, Tesla, macOS, and Ubuntu Desktop.

AbdulAziz Hariri of Haboob SA, who accomplished his attack against Adobe Reader the utilization of a 6-trojan horse good judgment chain leveraging many failed fixes that escaped the sandbox and overcame a banned API checklist, gave the first demonstration of the day. 5 Master of Pwn factors and $50,000 are awarded to him.

Microsoft SharePoint became as soon as the purpose of a 2-trojan horse chain that STAR Labs became as soon as ready to plod. They receive 10 Master of Pwn factors and $100,000.

Oracle VirtualBox became as soon as exploited by Bien Pham (@bienpnn) of Qrious Security (@qriousec) through an OOB Read and a stacked-primarily based mostly buffer overflow. 4 Master of Pwn factors and $40,000 are awarded to him.

Tesla – Gateway became as soon as the purpose of a TOCTOU attack by Synacktiv (@Synacktiv). They receive a Tesla Model 3 and $100,000, and 10 Master of Pwn factors.

Though the exploit became as soon as already known, STAR Labs (@starlabs sg) became as soon as successful in its attack against Ubuntu Desktop. They soundless receive $15,000 to boot to 1.5 Master of Pwn factors.

Marcin Wizowski outmoded an unhealthy enter validation trojan horse to elevate privileges on Dwelling windows 11. He receives $30,000 and 3 Master of Pwn factors.

Synacktiv (@Synacktiv) escalated privileges on Apple macOS by exploiting a TOCTOU trojan horse. They receive $40,000 to boot to 4 Master of Pwn factors.

Completely eight tries recently, in conjunction with a Tesla attack and a SharePoint RCE. All uncommon winning entries will doubtless be given the paunchy prize money for this 365 days’s competitors.

This skill that, hackers obtained $375,000 (alongside with a Tesla Model 3!) on the first day of the competitors for 12 zero-day exploits.

Old Protection

  • Samsung Galaxy S22 Hacked More than one Instances at Pwn2Own Hacking Contest Day 1
  • 26 Keen 0-Day Worm Exploited In Pwn2Own Hacking Contest – Day 2

Source credit : cybersecuritynews.com

Related Posts