閱讀文章 - 精華區 C_Chat - 批踢踢實業坊

● 9015 25 3/11 Pietro □ [新聞] Pinkie Pie 破解了Chrome的漏洞文章代碼(AID): #1FMuj0AW 作者: Pietro (☞金肅πετροσ) 看板: C_Chat 標題: [新聞] Pinkie Pie 破解了Chrome的漏洞時間: Sun Mar 11 01:11:27 2012 Google之前舉辦了一場邀請各路駭客來破解他們的瀏覽器的比賽 http://www.ettoday.net/news/20120310/30726.htm 這場比賽還有個插曲一個暱稱叫Pinkie Pie的駭客藉由三個漏洞自行破解了Chrome 不過因為他沒有經過雇主的同意參賽所以他的本名沒被公布不過對於一個能打破第四道牆的人物而言打破個瀏覽器沙箱也不奇怪是吧? http://www.zdnet.com/blog/security/teenager-hacks-google-chrome-with-three-0day-vulnerabilities/10649 http://zd.net/wHT3eY ============================================================================ 翻得有點糟請見諒 Teenager hacks Google Chrome with three 0day vulnerabilities 少年駭客破解了Google Chrome的三個零時漏洞 A teenage hacker who goes by the “Pinkie Pie” handle has hacked into Google Chrome using three distinct zero-day vulnerabilities to evade the browser’s protective sandbox. 一個青少年駭客PinkiePie駭入了Google瀏覽器Chrome，透過三個零時漏洞跳過了瀏覽器自保沙盒. The exploit was used as part of Google’s Pwnium hacker contest and earned the researcher the maximum $60,000 cash prize. 入侵程式被作為Google的Pwnium大賽的一部份，且研發者能獲得了60000刀的最高獎金 A Google spokesman on site confirmed the winning exploit. 一個Google發言人公開證實了這個壯舉 “We have a team standing by waiting for this.We have three different teams working on putting together the fix, building a patch and releasing it for our customers,” he said. "我們有個團隊正為此待命，我們有三個小組正在合力製作補丁並提供給我們的用戶"他說 While “Pinkie Pie” was previously unknown to onlookers here, Googlers described him as a “known and respected security researcher.” 雖然 "Pinkie Pie"在此之前是默默無聞，Googler卻形容他是個"知名且可敬的安全研究員 In an interview after successfully launching the drive-by download exploit, Pinkie Pie said he worked for about one-and-a-half weeks to find the vulnerabilities and write a reliable exploit. 在成功啟動漏洞攻擊程式後的採訪中，PinkiePie說他花上一個半星期去找出漏洞,並寫出一個可用的漏洞攻擊程式 The exploit worked on a fully patched Windows 7 machine (64-bit) and did not require any user action beyond normal web browsing. 這個程式運作在一個有全面補丁的Windows7下,且沒有超出任何正常的網路瀏覽器的操作行為 Pinkie Pie has never submitted a vulnerability report to Google and created this multi-stage attack specially for the Pwnium contest. Pinkie Pie之前從來沒有向Google提過漏洞提報或是專門為了參加這比賽而預先設計這項多段攻擊程序 He said he never considered selling the vulnerability to third-party brokers. ”I've never sold a vulnerability before.” 他說他從未考慮透過第三者出售這項漏洞。"我從未賣出漏洞" Strangely, which sandbox escapes are rare, Pinkie Pie said the easiest part of his attack was jumping out of the Chrome sandbox after the initial exploit. 稀奇的是,這是一項很罕見的跳過沙箱行動，Pinkie Pie說最簡單的部分就是在第一次攻擊後跳過沙箱 “I got lucky because I found a way [to jump out of the sandbox] very early. I figured it out by looking at it carefully,” he added. "我運氣不錯，我很早就發現了這個方法(指跳過沙箱),我想通這部分並仔細的觀查"他補充 He declined to discuss specifics of the vulnerabilities or the exploit techniques, deferring comments to Google representatives. 他拒絕討論漏洞及攻擊手法的細節，延期到Google的代表提出意見 -- ▊◣▎◢ ◢◣██◣ ◢▃▃▃◣ ●◎◎▽● ◢ ◣█▲◣ ◢██▲◣ ‧ ‧ ◢ ‧◥‧ █‧‧ █ ξ︵︵◎● ◤ σ σ ▌ ︵︵ █ ●█﹑█ ◤ ﹂ ● 　◥∴︵∴◤ ●▼ ◎● ▲●／ ▌ ●︿ ◥ -◤◣ ψ πετροσ -- ※ 發信站: 批踢踢實業坊(ptt.cc) ◆ From: 111.242.7.139

推 floyyed:Pinkie有三種口味開車無聊吃Pinkpie 03/11 00:35

推 jackie60728:FlutterShy才是王道 03/11 00:37

推 fenir:發現了讓子彈飛梗 03/11 00:37

推 yyc1217:這才是駭客做的事花上很多時間去找出一個漏洞 03/11 00:38

→ yyc1217:才不是在電腦前打很多字然後就突然駭進系統 03/11 00:38

推 startlequiet:二樓知道梗XD...... 03/11 00:38

推 sese5566:且獲得了60000刀的最高獎金丸把刀表示 03/11 00:38

→ sese5566:梗是啥蒙馬眼? 03/11 00:39

→ Pietro:http://www.youtube.com/watch?v=ODyRGV4cNXg 03/11 00:42

推 HDT:屁啦 Derpy才是王道目前唯二可以破第四道牆的 03/11 00:46

→ Pietro:這篇是靠Google大神翻譯的 03/11 00:46

※ 發信站: 批踢踢實業坊(ptt.cc) ※ 轉錄者: Pietro (111.242.7.139), 時間: 03/11/2012 01:11:27

→ evincebook:耶?! 這篇是? 03/11 01:12

※ 編輯: Pietro 來自: 111.242.7.139 (03/11 01:14)

推 synparabola:\Applebloom/ 03/11 01:14

→ biglafu:???? 03/11 01:15

推 evincebook:囧我看不太懂點在哪能解釋一下嗎@@? 謝謝 03/11 01:15

推 willkill:MLP 03/11 01:16

→ QBian:╱人●ω●人╲：？ 03/11 01:16

推 no4:洨馬 03/11 01:16

→ hoyunxian:我也覺得這應該要去Browser版才對...... 03/11 01:16

→ Pietro:PinkiePie是My Little Pony: Friendship Is Magic 的角色 03/11 01:18

推 jeans1020:彩虹小馬 03/11 01:18

推 scvb:牽強 03/11 01:19

推 LADKUO56:點頗薄弱 03/11 01:19

推 biglafu:My Little Porny!? 03/11 01:19

推 HDT:不牽強喔那駭客的頭像真的就是pinkie pie 03/11 01:19

推 kkessherry:PinkiePie你贏了 03/11 01:20

推 sixpoint:My Little Porny是什麼鬼....... 03/11 01:24

推 kira925:果然是大拉芙 03/11 01:25

→ Xavy:我覺得是因為附錄的內文太多所以相對點就薄弱了 XD 03/11 01:25

→ Pietro:在過半小時實況就要開始了 03/11 01:26

→ Pietro:再 03/11 01:27

→ xxx60709:MY little porny三小wwwwwwwwwwwwwwwwww 03/11 01:36

推 realion:PornyXDD 03/11 01:42

推 xxx60709:淦打My little porny會找到怪怪的東西... 03/11 01:43

推 ox12345xo:小馬超棒的!!!! 雖然我只看過一集~~ 03/11 02:00

推 biglafu:ox看My Little Porny!? 03/11 02:03

推 a150237:小馬超棒的啊!!!看了四集就中毒了ww 03/11 02:07

推 biglafu:Little Pony-->綠豆碰 03/11 02:10

推 synparabola:綠豆椪wwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwww 03/11 02:18

推 tsunamimk2:fluttershy是我的！ 03/11 02:18

推 HDT:樓上拿Futashy就好 Fluttershy是我的 03/11 02:21

推 a150237:那Luna我帶走了! 03/11 02:31

推 angol1337:MLP ftw! 03/11 03:05

※ 編輯: Pietro 來自: 111.242.0.186 (03/11 08:24)

推 undeathelf:MY little porny 靠要XDDDDD 03/11 09:53

推 jujustine83:好厲害 03/11 10:24

→ ASDIGA:看到梗我就笑了 03/11 13:03