Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.
03-21-2010, 08:01 PM #1
Researcher Finds 20 Preview, Safari Security Holes
Internet security researcher Charlie MIller will release the results of research he's done to uncover 30 security holes in Mac OS X to the CanSecWest security conference in Vancouver later this month. According to a report by Forbes, the guy who won a MacBook Air at Pwn2Own the past two straight years is not sure whether he will tell Apple what the flaws are: he says he might hold on to them for this year's challenge.
Miller worked for five years at the US National Security Agency as a "global network explaoitation analyst," finding weaknesses and vulnerabilities in computer networks for the US government spies, reportedly carrying out multiple hacks against foreign targets. As a private citizen, he started Independent Security Evaluators, a consulting firm, showing service providers how to harden their Web code against attack. Miller has been very public in his focus on the vulnerabilities of Apple software, being the first to discover a security hole in Mobile Safari in 2007. At Pwn2Own in 2008, it took him just two minutes to defeat a MacBook Air's security, and used a Safari exploit to crack a MacBook in less than 10 seconds in 2009. Last year, he also used an SMS vulnerability to pwn an iPhone.
A report by Andy Greenberg the Forbes Firewall blog notes that of the 30 previously unknown security holes Miller found in Mac OS X, 20 of them are in the Preview application. By tricking a user into opening a PDF that contains Miller's exploit, a hacker could gain control of their Mac. Moreover, since Safari uses Preview's rendering engine to display PDFs in the browser, the code could be hidden on any web page.
Miller told Forbes that he used "dumb fuzzing" to find the holes: a Python script just five lines long changed one bit on a PDF file at a time and let the application run it, checking to see if it crashed. He used this brute force method for three weeks straight on each of four applications and says he found a thousand different ways to crash them. He then investigated the crashes to see if any of them allowed him to gain control of the system. There were 20 exploitable bugs in Preview compared with either 3 or 4 each in Reader, PowerPoint, and OpenOffice.
Miller said that he was surprised he found so many bugs, and took it as a clear indication that Apple being lax in doing its own security testing, “It’s shocking that Apple didn’t do this first," the researcher told Forbes. "The only skill I’ve used here is patience.” He indicated that he hasn't informed Apple of his discoveries and may try to use them against Mobile Safari on the iPhone for this year's Pwn2Own competition. If that works, he says, he'll see if they work on the iPad as well.
"Microsoft, Apple, and Adobe all have huge security teams, and I'm one guy working out of my house," Miller says. "I shouldn't be able to find bugs like these, ever."
Last edited by Paul Daniel Ash; 03-21-2010 at 08:05 PM. Reason: wiki preview :(
03-21-2010, 08:17 PM #2
wow this is some serious stuff huh well what are they gonna do about itIF I HELPED PLEASE HIT THANKS
03-21-2010, 08:37 PM #3
I vote charlie miller should jump on the jailbreak train.
03-21-2010, 08:57 PM #4
it's no secret that their are holes in the OS. the thing is that viruses are written for pc's because there are more of them.
it's not because macs are just so godly that they're immune
03-21-2010, 09:19 PM #5
03-21-2010, 09:52 PM #6
03-21-2010, 09:53 PM #7
I want that man's knowledge. I feel dumb haha
03-21-2010, 11:26 PM #8
i wonder whats the percentile of people who have macs verses pcIF I HELPED PLEASE HIT THANKS
03-21-2010, 11:45 PM #9
03-22-2010, 03:05 AM #10
macs are as vulnerable as you let themkillall Terminal
03-22-2010, 03:51 AM #11
03-22-2010, 03:56 AM #12
I for one am glad that more people prefer Windows over Mac. More viruses written for Windows is totally fine with me! This guy is really smart, wish I knew how to do some of that stuff.
03-22-2010, 03:18 PM #13
- Join Date
- Nov 2007
- Thanked 2 Times in 1 Post
he just really knows his stuff. he probably knows every code known to mankind. and he's a professional on top of it. practice + patience is all it takes!
i too am glad many poeple own windoze over mac, it makes me feel special because when poeple come to my house, they dont want to use my computer becuase "they dont know how"
03-22-2010, 04:13 PM #14
03-22-2010, 05:17 PM #15
07-07-2010, 07:41 AM #16
07-07-2010, 08:53 AM #17
So he can crash apps. Nice. If this wins the contest for him that will be sad.
07-07-2010, 07:54 PM #18