Recently, MWR Labs took part in the Pwn2Own 2013 competition in Vancouver, demonstrating a full sandbox bypass exploit against Google Chrome (1). The exploit used two vulnerabilities:
A type confusion in WebKit, Chrome’s rendering engine at the time (CVE-2013-0912)
A kernel pool overflow in Microsoft Windows, the underlying operating system
This blog post will provide in-depth technical details of the first vulnerability, with a second blog post upcoming to detail the second vulnerability.
read more........http://labs.mwrinfosecurity.com/blog/2013/04/19/mwr-labs-pwn2own-2013-write-up---webkit-exploit/