Pwn2Own hacking contest shows Firefox isn’t safe at all

By Posted 25 Mar 2010, 14:18

Following on from our previous article, which informed you about the hacking contest which was staged by ‘Pwn2Own’, we have article for you to read now, which looks in detail at the ease it took for a hacker to completely take apart the security within Mozilla Firefox to gain total control of a 64-bit version of Windows 7.

The article comes from Zdnet, who explains how a 26-year-old German hacker known as Nils, managed to use various ‘methods’ on Firefox to bypass the key Address Space Layout Randomization (ALSR) and Data Execution Prevention (DEP) securities with Microsoft’s Windows 7 software.

The contest rules state that he wasn’t allowed to explain how he exploited Firefox, so we will never know the full details.

What this has done though, is surely give a severe wake up call to Mozilla and Microsoft, on the sheer ease of how this operation was performed.

Let us know your thoughts on this, full details through the link.