"Security researcher Charlie Miller held onto a vulnerability for an entire year, before using it on Wednesday to win $5,000 and an Apple laptop at the Pwn2Own contest here at the CanSecWest conference.

Miller — a principal analyst at Independent Security Evaluators — found two flaws in Apple's Safari Web browser more than a year ago and prepped the easier-to-exploit issue for last year's competition, he said. Following an announcement that this year's contest would focus on browsers as well as mobile devices, Miller more fully researched the leftover security flaw and found that it remained exploitable.

"I found this bug ... last year, but like all good researchers, I sat on the issue," he said after being declared the first winner."

Read more: http://www.securityfocus.com/news/11549