Other set of bugs discovered included those highlighted at Pwn2Own hacking contest last month including the bug that allowed heap-based buffer overflow which can be exploited remotely to bypass a sandbox protection mechanism via unspecified vector. This vulnerability was discovered by Liang Chen of member of a Shanghai-based group of security researchers “Keen Team,” and was rewarded a bounty prize of $65,000 for discovering this bug.Another was discovered by French vulnerability seller Vupen, which also sent a team to Pwn2Own. Vupen hacked several targets, including Chrome, Adobe Reader and Adobe Flash, and Microsoft’s Internet Explorer, winning a reward of $400,000. The bug patched in WebKit the same which is used by both Google’s Chrome and Apple’s Safari as noted above.Apple have advised users to download the patch or update their browser as soon as possible.
