Confirmed! Hector "p3rr0" Peralta demonstrated a improper configuration bug in Microsoft Teams and has earned $150K and 15 Master of Pwn points! pic.twitter.com/gSbU5EzdFU
— Zero Day Initiative (@thezdi) May 18, 2022
Confirmed! Masato Kinugawa demonstrated a 3-bug chain of injection, misconfiguration and sandbox escape on Microsoft Teams to earn $150K and 15 Master of Pwn points. pic.twitter.com/UELp6y38yo
— Zero Day Initiative (@thezdi) May 18, 2022
Confirmed! The @starlabs_sg team used an OOB Read and OOB Write to achieve an escalation on Oracle VirtualBox at #Pwn2Own 2022. They have earned $40K and 4 Master of Pwn points. #P2O15 pic.twitter.com/xvJ8SFULpF
— Zero Day Initiative (@thezdi) May 18, 2022
Confirmed! Manfred Paul (@_manfp) demonstrated 2 bugs (prototype pollution and improper input validation) in Mozilla Firefox and has earned $100K and 10 Master of Pwn points! #Pwn2Own #P2O15 pic.twitter.com/hfn206Dc0Z
— Zero Day Initiative (@thezdi) May 18, 2022
Confirmed! Phan Thanh Duy (@PTDuy) and Lê Hữu Quang Linh (@linhlhq) of STAR Labs earned $40K and 4 Master of Pwn points for a Use-After-Free elevation of privilege on Microsoft Windows 11. #Pwn2Own #P2O15 pic.twitter.com/ZJ8sW0mUtE
— Zero Day Initiative (@thezdi) May 19, 2022
Confirmed! Manfred Paul (@_manfp) scored his second win of the day with a OOBW on Apple Safari, earning him another $50K and 5 more Master of Pwn points! #Pwn2Own #P2O15 pic.twitter.com/LLCJC7LCto
— Zero Day Initiative (@thezdi) May 18, 2022
Folytatása következik ma:
We've still got a couple more attempts to confirm before Day 1 of #Pwn2Own 2022 is officially in the books, but we are excited to share tomorrow's schedule, including our two Tesla attempts! Tune in to #P2O15 pic.twitter.com/OirK8eD069
— Zero Day Initiative (@thezdi) May 19, 2022
- A hozzászóláshoz be kell jelentkezni
- 1179 megtekintés
Hozzászólások
Ma következik:
- Tesla Model 3 (kétszer)
- Windows 11 (kétszer)
- Ubuntu Desktop (kétszer)
trey @ gépház
- A hozzászóláshoz be kell jelentkezni
Firefox-nál, Tesla-nál mit akar az jelenteni, hogy with sandbox escape?
- A hozzászóláshoz be kell jelentkezni
Sandbox escape: ennek védelmi a mechanizmusnak a legyőzése, kijutás a működéshez még éppen elegendő, a lehető legkevesebb jogokat adó környezetből
trey @ gépház
- A hozzászóláshoz be kell jelentkezni