Feeds

Hack-off contestant dubs Apple Safari 'easy pickins'

Pwn2Own's low-hanging fruit

Using blade systems to cut costs and sharpen efficiencies

Apple's Safari browser is likely to be compromised multiple times at an annual hacking contest being held later this month because it's "easy pickins as usual," a researcher specializing in Apple security says.

Charlie Miller, the white-hat hacker who successfully felled a MacBook Air at last year's Pwn2Own competition, predicts the Apple browser will be hacked by at least four contestants this time around. That makes it the most vulnerable piece of software at this year's event, according to Miller, who was also among the first to disclose critical iPhone vulnerabilities a few weeks after its release.

Within hours of debut of Safari for Windows in June of 2007, security researchers discovered multiple vulnerabilities that could allow attackers to remotely install malware on the machines of people who used the beta. A co-author of the recently published The Mac Hacker's Handbook, Miller says Safari hasn't made enough progress since then and he cites several reasons why.

For one, the ASLR, or address space layout randomization, protection in Apple's OS X is easily defeated, allowing hackers to overcome a barrier that prevents similar exploits from working on the most recent versions of Windows. What's more, the it-just-works Mac credo increases the number of potential soft spots hackers can target.

"Every feature an application has is another spot a vulnerability may lay," he writes in an email to The Register. "These features are why I like Safari, but, the drawback is it has a large attack surface."

Miller goes on to predict that Google's Android will be successfully pwned by one participant, explaining "Not too tough but no one owns one." Translation: Android's susceptibility to breaches will be slightly offset by its lukewarm reception in the market.

Meanwhile, the iPhone and Symbian devices will survive unscathed thanks to their non-executable heap. Such countermeasures prevent code loaded into a program's heap from executing, making it hard for hackers to exploit the devices maliciously even when software bugs are discovered. Miller also predicts that IE8 and Firefox will also emerge undefeated.

Miller makes no predictions about Google's Chrome, which has also been shown to be susceptible to attack.

This year's event will take place March 18-20 at the CanSecWest security conference in Vancouver. One track will pit hackers against the major browsers, including Safari, Internet Explorer, and Firefox. A second track will test the mettle of major smart phones, including the iPhone, Blackberry, and devices running the Android, Symbian, and Windows Mobile OSes. El Reg will once again provide start-to-finish coverage of the hacking games in all their glory. ®

This article was updated to note that the 2007 debut was for Safari for Windows.

Boost IT visibility and business value

More from The Register

next story
14 antivirus apps found to have security problems
Vendors just don't care, says researcher, after finding basic boo-boos in security software
Secure microkernel that uses maths to be 'bug free' goes open source
Hacker-repelling, drone-protecting code will soon be yours to tweak as you see fit
Only '3% of web servers in top corps' fully fixed after Heartbleed snafu
Just slapping a patched OpenSSL on a machine ain't going to cut it, we're told
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Israel's Iron Dome missile tech stolen by Chinese hackers
Corporate raiders Comment Crew fingered for attacks
Roll out the welcome mat to hackers and crackers
Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
Researcher sat on critical IE bugs for THREE YEARS
VUPEN waited for Pwn2Own cash while IE's sandbox leaked
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Application security programs and practises
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Securing Web Applications Made Simple and Scalable
Learn how automated security testing can provide a simple and scalable way to protect your web applications.