Mozilla And Google Sure Up Web Browsers Ahead Of Pwn2Own Hacking Contest

Mozilla has patched 10 vulnerabilities in its Firefox web browser, with Google also having corrected flaws to Chrome, ahead of the 'Pwn2Own' hacking contest.

The controversial contest, a part of the CanSecWest security conference, will see security researchers having a go at several popular web browsers and operating systems to compromise their security and unearth vulnerabilities.

Mozilla, following in the footsteps of rival browser maker Google, has fixed 10 vulnerabilities in its browser. Eight of the ten vulnerabilities were categorised as 'critical' while the remaining two were rated as 'high' and 'moderate' respectively.

Among the vulnerabilities patched by Mozilla, one affected Firefox's JavaScript capabilities and the other, discovered by security researcher Jordi Chancel, could cause a crash if hit with a corrupted JPEG file.

“Security researcher Jordi Chancel reported that a JPEG image could be constructed that would be decoded incorrectly, causing data to be written past the end of a buffer created to store the image. An attacker could potentially craft such an image that would cause malicious code to be stored in memory and then later executed on a victim's computer,” the company said in an advisory.

Google, who patched 19 flaws in its Chrome web browser, is offering an additional $20,000 for the hacker who manages to take down Chrome.