Microsoft’s browser folks have to hate when Pwn2Own rolls around every year. It’s not that unusual for every browser to get hit with a nasty zero-day exploit, but it seems like Microsoft leads the pack, year after year after year. Some of this had to do with the aging nature of legacy Internet Explorer. Even in IE11, which had some limited sandboxing capabilities, it just seemed to be perpetually bullied by the security community.
Obviously this isn’t just the fault of the Edge browser, but the headlines all lead with it anyway. Still, the point of the entire competition make a competition out of bug bounties, and the good thing is that this should soon be patched to avoid it all together.
Still, the idea of gaining host access from a virtualized browser is just about a nightmare scenario.
Ars Technica comments:
- ioFABRIC Vicinity 3.0: Storage Myth Making - August 22, 2017
- Eclipse Logistics - August 21, 2017
- Asus B250 Mining Expert Motherboard with 19 PCI-E Slots - August 21, 2017
- Apple and the Oak Tree - August 21, 2017
- QLC NAND – how real is it and what can we expect from the technology? - August 18, 2017
- Episode 8 – Wireless Misconceptions - August 17, 2017
- Dueling AMD and Intel Server CPUs, HyperGrid Brings On-Demand to the Data Center, and Old World AI in Gestalt Server News 17.8 - August 16, 2017
- Sprucing up the lab with ioFABRIC & NVMe - August 16, 2017
- AMD Threadripper X399 Motherboards RANKED (by tackiness) - August 15, 2017
- Will Killing Net Neutrality End the Public Cloud? - August 15, 2017