Microsoft’s browser folks have to hate when Pwn2Own rolls around every year. It’s not that unusual for every browser to get hit with a nasty zero-day exploit, but it seems like Microsoft leads the pack, year after year after year. Some of this had to do with the aging nature of legacy Internet Explorer. Even in IE11, which had some limited sandboxing capabilities, it just seemed to be perpetually bullied by the security community.
Obviously this isn’t just the fault of the Edge browser, but the headlines all lead with it anyway. Still, the point of the entire competition make a competition out of bug bounties, and the good thing is that this should soon be patched to avoid it all together.
Still, the idea of gaining host access from a virtualized browser is just about a nightmare scenario.
Ars Technica comments:
- A Critique of Network Coding and Automation - August 16, 2018
- Sierra Wireless Misadventures | Gestalt IT Rundown, August 8, 2018 - August 15, 2018
- The Geek Travel Router - August 14, 2018
- AMD’s Second Generation Threadripper Isn’t Quite EPYC - August 14, 2018
- Alastair Cooke – IT Origins - August 9, 2018
- Slack Buying Hipchat is Good for ChatOps - August 3, 2018
- Transcoding with My Little Cluster - August 3, 2018
- AMD Plays the Long Hygon | Gestalt IT Rundown: July 11, 2018 - July 12, 2018
- AIRI: Converging FlashBlade into an AI Reference Architecture - July 12, 2018
- 2018 MacBook Pros Comes Closer to Earning Their Name - July 12, 2018