The 5th annual Pwn2Own competition is here. Current Champions, Google Chrome from Google is back with a good prize for participants, $20,000 and a CR48.
Cr48 is not a target in this competition. Hackers will have to break chrome browser on windows 7 machines to win and CR48 notebook is only a part of the prize. Â Here is the highlight from the blogpost.
Google CR-48 running ChromeOS (no attacks against this device, it is merely a prize. The Chrome target will be running on the other laptops)
As for Chrome, the contest will be a two-part one. On day 1, Google will offer $20,000 USD and the CR-48 if a contestant can pop the browser and escape the sandbox using vulnerabilities purely present in Google-written code. If competitors are unsuccessful, on day 2 and 3 the ZDI will offer $10,000 USD for a sandbox escape in non-Google code and Google will offer $10,000 USD for the Chrome bug. Either way, plugins other than the built-in PDF support are out of scope.
so, ready for hacking ? Anyone here competing in this Â ? 🙂