Security Research
Showing results for 
Search instead for 
Do you mean 

Mobile Pwn2Own 2014: The day one recap

Shannon_Sabens ‎11-12-2014 03:52 AM - edited ‎11-12-2014 06:38 PM

Day One of HP ZDI’s annual Mobile Pwn2Own competition closed with a clean sweep – five teams, five targets, five successful attempts. In the process, nine bugs were exploited and immediately provided to vendors via coordinated disclosure.

 

After a slightly late start to the morning, South Korean competition veterans lokihardt@ASRT approached the bench with a two-bug combination that pwned the Apple iPhone 5S via the Safari browser. While details of these and all other Pwn2Own bugs are closely held among the researcher, vendor, and ZDI, one of the bugs executed a full Safari sandbox escape.

 

Figure 1:  lokihardt@ARST prepares to start the competition off right [photo: ZDI]

 

The second contest was the first of two consecutive (and successful) attempts against the Samsung Galaxy S5. The first effort, from Japan’s Team MBSD, used NFC as a vector to trigger a deserialization issue in certain code specific to Samsung.

 

The other Samsung pwnage, brought to the competition by Jon Butler of South Africa’s MWR InfoSecurity, took another approach focusing on NFC. In this case, the exploit targeted a logical error that’s possible on the Samsung Galaxy S5 devices.

 

Adam Laurie from the UK’s Aperture Labs stepped up in the fourth competition spot with another NFC attack that proves that life sometimes does imitate art. A two-bug exploit targeting NFC capabilities on the LG Nexus 5 (a Google-supported device) demonstrated a way to force BlueTooth pairing between phones – a plot point, as several observers noted, on the television show “Person of Interest.”

 


Figure 2: Adam Laurie is the fourth contestant with a successful attack [photo: ZDI]

 

Finally, the three-man MWR InfoSecurity team of Kyle Riley, Bernard Wagner, and Tyrone Erasmus wrapped up the first day of competition with a successful three-bug medley targeting the Amazon Fire Phone’s Web browser. Tune in tomorrow at 10am JST (5pm Wednesday PST, 1am GMT) when the contest greets its final two participants, Nico Joly targeting Windows Phone and Jüri Aedla targeting Android.

 

 

 

0 Kudos
About the Author

Shannon_Sabens

Leave a Comment

We encourage you to share your comments on this post. Comments are moderated and will be reviewed
and posted as promptly as possible during regular business hours

To ensure your comment is published, be sure to follow the Community Guidelines.

Be sure to enter a unique name. You can't reuse a name that's already in use.
Be sure to enter a unique email address. You can't reuse an email address that's already in use.
Type the characters you see in the picture above.Type the words you hear.
Labels
Events
Aug 29 - Sep 1
Boston, MA
HPE Big Data Conference 2016
Attend HPE’s Big Data Conference to learn from peers in every industry and hear from Big Data experts and thought leaders in an exciting, energy fille...
Read more
Sep 13-16
National Harbor, MD
HPE Protect 2016
Protect 2016 is our annual conference and is the place to meet the world’s top information security talent, discuss new products and share information...
Read more
View all