1050开元网站-中国传奇黑客攻破苹果Safari
Everybodys Web software got pwned at the Pwn2Own hackers conference this week: Apples (AAPL) Safari, Googles (GOOG) Chrome, Microsofts (MSFT) Internet Explorer, Mozillas Firefox and Adobes (ADBE) Reader and Flash.上周举办的Pwn2Own黑客大赛中,所有网络软件还包括苹果(Apple)Safari浏览器、谷歌(Google)Chrome浏览器、微软公司(Microsoft)的IE浏览器、Mozilla公司的火狐浏览器(Firefox),以及Adobe公司的PDF阅读器(Adobe Reader)及浏览器插件Adobe Flash都被黑客完全攻陷。Chrome was hacked by a French team from Vupen Security with a use-after-free vulnerability that affects both the WebKit and Blink rendering engines.法国安全性公司Vupen利用一个Use-After-Free 漏洞攻陷了Chrome浏览器。
这个漏洞对两种浏览器内核WebKit及Blink都有影响。Safari was defeated by Liang Chen, one of a pair Chinese Keen Team hackers, using a heap-overflow-and-sandbox-bypass combination that took three months to perfect.来自中国安全性研究团队Keen Team的陈良利用一个填阻塞及沙箱跨过人组攻陷了苹果的Safari浏览器。
这个团队共用了三个月时间来完备这个人组。For Apple, the OS is regarded as very safe and has a very good security architecture, Chen told ThreatPosts Michael Mimoso. Even if you have a vulnerability, its very difficult to exploit. Today we demonstrated that with some advanced technology, the system is still able to be pwned. But in general, the security in OS X is higher than other operating systems.“苹果的OS操作系统被指出是十分安全性的,不具备十分好的安全性架构,”陈良告诉他安全性信息网站ThreatPost的迈克尔米莫苏说道。“即使它有漏洞,也很难被攻陷。
今天我们证明,利用一些先进设备技术,OS操作系统还是可以被攻陷。但总体来说,这个系统的安全性要低于所有其它操作系统。”In a separate interview with CNET, Chen said that OS X is harder to attack than iOS 7.0 because Apple issues security updates for its desktop operating system more frequently than for its mobile OS.在拒绝接受CNET科技资讯网的分开专访时,陈良说,OS X系统比iOS 7.0更加无以攻陷,因为苹果为桌面操作系统获取的安全更新比为移动操作系统获取的更加频密。
The two-day event, sponsored by Hewlett-Packard (HPQ) and organized by the HP-owned Zero-Day Initiative, paid out $850,000 in prize money to eight teams of competitors, plus another $82,500 in charitable donations. The event was staffed by observers from Apple and the other companies, which will presumably now start patching those holes.由惠普公司(Hewlett-Packard)赞助商、惠普零日计划(Zero-Day Initiative)的组织的Pwn2Own黑客大赛为期两天,共计为八个参赛团队获取了85万美元的总奖金,并为慈善机构捐献了8.25万美元善款。除参赛团队外,参与这次活动的还有许许多多来自苹果及其它公司的观察员,他们将在大赛完结后著手修复这些安全漏洞。
I think the Webkit fix will be relatively easy, Chen told Mimoso. The system-level vulnerability is related to how they designed the application; it may be more difficult for them.“我指出Webkit漏洞较为更容易修缮,”陈良告诉他米莫苏。“而系统级别的漏洞与程序设计涉及,因此有可能更加无以修缮。
本文关键词:1050开元网站
本文来源:1050开元网站-www.9023.com.cn
同类文章排行
- 云南城镇化建设导致湿地破碎化-1050开
- 苹果Siri侵权案拉锯8年5次判决 业内
- 1050开元网站_中国互联网数字有无水分
- “设计界奥斯卡”2017德国红点奖颁奖,
- 荷兰 Spar 超市个性环境设计‘105
- 【1050开元网站】新冠确诊数世界"第一
- 智慧城市行业对话:城市智能化,一部身边的
- 【1050开元网站】深度:常见锂离子电池
- 餐饮加盟开店注意事项_1050开元网站
- 一周智慧城市丨工信部约谈“ZAO”;华为
最新资讯文章
- 【1050开元网站】黄金突破1820再刷
- 陈欣:当下是否应该增加对股市的投资?【1
- 北极冻土里的代码,是GitHub的终极浪
- 1050开元网站_省会文化中心设计方案“
- 1050开元网站|“一带一路”能源项目清
- 1050开元网站-NBC公布2020年东
- 1050开元网站:JW万豪酒店入驻茂业天
- 1050开元网站-乘客被困酒店心疼电梯不
- 1050开元网站|客户需求促创新驱动松德
- 量子通讯争议:量子派和经典派谁会笑到最后
- 1050开元网站-联想真的需要智能手机业
- 现在老旧小区改造进展如何?住建部回应【1
- ‘1050开元网站’滴滴:1/3网约车内
- 【1050开元网站】西班牙穆尔西亚一名工
- ‘1050开元网站’2013开元酒店上海
- 1050开元网站:淮安万达嘉华酒店荣获第
- 1050开元网站|外媒:苹果计划2020
- 1050开元网站:千禧一代是怎样改变了中
- 资金利率又双叒叕涨了:今天隔夜利率创5个
- 《规划》定调顶层设计树立区域协调发展理念