Mozilla beats rivals, patches Firefox's Pwn2Own bug
Security

Mozilla beats rivals, patches Firefox's Pwn2Own bug

Mozilla last week patched a Firefox vulnerability just a day after it was revealed during Pwn2Own, the first vendor to fix a flaw disclosed at the hacking contest.

"Congrats to #Mozilla for being the first vendor to patch vuln[erability] disclosed during #Pwn2Own," tweeted the Zero Day Initiative (ZDI) Monday. ZDI, the bug brokerage run by Trend Micro, sponsored Pwn2Own.

Mozilla released Firefox 52.0.1 on Friday, March 17, with a patch for the integer overflow bug that Chaitin Security Research Lab leveraged in an exploit at Pwn2Own on Thursday, March 16. The Beijing-based group was awarded $30,000 by ZDI for the exploit, which combined the Firefox bug with one in the Windows kernel.

The vulnerability was rated "Critical" by Mozilla in an accompanying description. As usual, the company masked the technical details of the bug to outsiders.

Chaitin was just one of several Chinese security teams that participated in Pwn2Own, again held at the annual CanSecWest conference in Vancouver, B.C., Canada. The group took third place among the participants, and won a total of $90,000 in prize money.

Firefox was not the only browser to fall at Pwn2Own. Apple's Safari was hacked four times at the contest, and Microsoft's Edge was exploited five times during the three-day event. Google's Chrome, however, came away unscathed.

IDG Insider

PREVIOUS ARTICLE

«ARM steps up chip performance to catch up with Intel, AMD

NEXT ARTICLE

Samsung unveils Bixby voice assistant for upcoming Galaxy S8»
author_image
IDG Connect

IDG Connect tackles the tech stories that matter to you

Add Your Comment

Most Recent Comments

Our Case Studies

IDG Connect delivers full creative solutions to meet all your demand generatlon needs. These cover the full scope of options, from customized content and lead delivery through to fully integrated campaigns.

images

Our Marketing Research

Our in-house analyst and editorial team create a range of insights for the global marketing community. These look at IT buying preferences, the latest soclal media trends and other zeitgeist topics.

images

Poll

Will Kotlin overtake Java as the most popular Android programming language in 2018?