You are here: Home > Google Chrome News

Full Chrome exploit: Google Chrome hacker wins $60K at Pwnium

March 10, 2012 05:57 PST
7

From Sundar Pichai Google+ post:

Congrats to long-time Chromium contributor Sergey Glazunov who just submitted our first Pwnium entry. Looks like it qualifies as a “Full Chrome” exploit, qualifying for a $60k reward. We are working fast on a fix that we’ll push via auto-update. This is exciting; we launched Pwnium this year to encourage the security community to submit exploits for us to help make the web safer. We look forward to any additional submissions to make Chrome even stronger for our users.

About Pwnium: rewards for exploits

From Chromium Blog.

This year at the CanSecWest security conference, Google will once again sponsor rewards for Google Chrome exploits. This complements and extends our Chromium Security Rewards program by recognizing that developing a fully functional exploit is significantly more work than finding and reporting a potential security bug.

  • $60,000 - "Full Chrome exploit": Chrome / Win7 local OS user account persistence using only bugs in Chrome itself.
  • $40,000 - "Partial Chrome exploit": Chrome / Win7 local OS user account persistence using at least one bug in Chrome itself, plus other bugs. For example, a WebKit bug combined with a Windows sandbox bug.
  • $20,000 - "Consolation reward, Flash / Windows / other": Chrome / Win7 local OS user account persistence that does not use bugs in Chrome. For example, bugs in one or more of Flash, Windows or a driver. These exploits are not specific to Chrome and will be a threat to users of any web browser. Although not specifically Chrome’s issue, we’ve decided to offer consolation prizes because these findings still help us toward our mission of making the entire web safer.
Google Chrome hacker wins $60K at Pwnium

Full Chrome exploit: Google Chrome hacker wins $60K at Pwnium

To maximize our chances of receiving exploits this year, Google has upped the ante. Google will directly sponsor up to $1 million worth of rewards in the following categories:

All winners will also receive a Chromebook.


Comments:
Leave your comment | All comments | Contact Andrew

#1  posted on March 10, 2012 15:31 PST
Chrome = browser. Chromium = OS.

#2  posted on March 10, 2012 15:32 PST
Great work guys. Did Chrome team also got access to VUPEN's exploit at Pwn2Own or not?

#3  posted on March 12, 2012 11:27 PDT
Nice themes! If you want a bigger selection to choose from visit some of the other chrome themes websites to grab all kinds of hd backgrounds!

#4  posted on March 28, 2012 05:42 PDT
Shit chrome firefox for ever shit chrome shitchrome shit boys and Chrome

#5  posted on October 16, 2012 13:40 PDT
Chrome is the faster browser ever

#6  posted on March 28, 2015 14:37 PDT
up: chrome
down: firefox

#7  posted on December 31, 2015 15:14 PST
thank you wery much

Leave your comment
If you want to leave your comment on this article, simply fill out the next form:
Name: * Requirement
E-mail: Optional (won't be published)
Website / Blog: Optional
Are you a human? For anti spammer, please calculate following expression:
9 x 4 + 2 = * Requirement
Comment:
* Requirement
You can use these tags:
[b] Text [/b]: Bold text
[quote] Text [/quote]: Quote text