OSX cracked in 2 minutes OH SHI-

[Power666]

From the article:

Quote:

Miller's win came on day two of the contest, which gradually eases the rules for what constitutes as qualifying exploit. Not a single attendee entered the contest on day one, when all vulnerabilities had to reside in the machine's operating system, drivers or network stack. Winners were eligible for a $20,000 prize.

On day two, the attack surface was expanded to include browsers, mail applications and other common applications, and the bounty was reduced to $10,000.

That pretty much isolates the flaw on the system specifically to Safari. Further more, the web browser had to go to a specific site hosting the exploit for it to be compromised. While this is still pretty bad, it is not as bad as gaining remote access at the will of the hacker. The two minute time didn't include the time for preparing the exploit which was already housed on another machine. One thing not revealed is if the hacker got root access but I highly doubt it. The other interesting thing is to see if this exploit also works on the Windows version of Safari.

[neowolf]

Quote:

Originally Posted by chedabob

Microsoft: Vista has fewer first-year vulnerabilities than any modern OS - Engadget

OH SHI-

I'll find the other graph that includes Leopard later

Newsflash. Microsoft says Microsoft products are the best. Other stunning revelations coming at 10. (Hint. Steve Jobs likes Apple products.)

Aside from the fact that there's a world of difference between vulnerabilities that the OS maker is aware of and actually present in the system. (And willing to admit. Open source projects tend to have the most transparency here inherently.) There's also a lack of context as to what kind of vulnerabilities we're talking about. And of course, always consider the source. Ergo, this would be far more compelling if it wasn't coming from MS.

[chedabob]

It'd be pretty stupid to lie about something that could easily be proven wrong.

[E6600]

Quote:

Originally Posted by chedabob

It'd be pretty stupid to lie about something that could easily be proven wrong.

Microsoft lied before, Microsoft is evil, even the US government (run by retards) realize that Microsoft is dangerous!

Microsoft lied about IE being an integral component of Windows, yet I and others managed to remove it, I removed the whole Windows explorer and replaced it by ReactOS explorer.

[neowolf]

Quote:

Originally Posted by chedabob

It'd be pretty stupid to lie about something that could easily be proven wrong.

Easily proven wrong? They didn't list what the vulnerabilities were, so sure you could waste your time going through lists for the respective OSes to examine what the actual bugs are to see the severity, but really only fanboys care that much in the first place. Whatever vulnerabilities they may be aware of but not publicly posted would be rather difficult to call out on. Whatever ones they're not aware of as well likewise. I'm used to seeing Linux reports advocate Linux as the best, Apple as Apple, and Microsoft as Microsoft. I take all of the above with a healthy pebble of salt.

[downphoenix]

Quote:

Originally Posted by E6600

2 minutes?
I'm calling BS!
How can you know that this guy, didn't know about it before the event, came to the event and claimed he found it in 2 minutes. The guy is a Mac user, which makes the possibility of him knowing about it before the event highly likely!

2 minutes all the same.

Quote:

Originally Posted by ARTICLE

At time of writing, the Windows and Linux machines were still standing.

There you have it E6600. Macintosh should be called Macintrash. Officially the least stable OS on the face of the earth (except for Windows ME maybe ).

[Power666]

Quote:

Originally Posted by chedabob

It'd be pretty stupid to lie about something that could easily be proven wrong.

That's the fun thing about the number of security flaws reported - you can pretty much make up your own number depending on how you count things. I've seen one flaw that exists on OS X 10.3, OS X 10.3 Server, OS X 10.4 and OS X 10.4 Server as four different entities. With that line of thinking, it'd be like calling one Vista flaw count as 9 due to the different versions of Vista on the market.