RE: Internet Explorer 0day exploit

From: Hugo van der Kooij <hvdkooij@xxxxxxxxxxxxxxx>
Date: Tue, 24 Jul 2007 07:37:08 +0200 (CEST)

On Sat, 21 Jul 2007, Ken Kousky wrote:

Zero day is a serious misnomer from vendors that suggest that the counting
of time an exposure is known BY THE GOOD GUYS is some kind of trigger date
when in reality, many serious exploits are know BY THE BAD GUYS so the day
zero is really months or maybe years prior to the disclosure or notification
date. Look at the WMF vulnerability that caused a mad rush to patch it once
the good guys were put on notice. In this case, the vulnerability had been
present in Windows products since the early 90s and according to Kapersky
Labs there was even malware being sold that took advantage of it long before
there was even day zero notification.

I reserve the word 0day to issues that have been found through exploits.

So a 0day exploit is an exploit out in the field were the vulnerability is/was not publicly known before the exploit was found.

As such it would be a very rough indication of the score of good guys (writing advisories) and the bad guys (writing exploits).

Hugo.

--
hvdkooij@xxxxxxxxxxxxxxx http://hugo.vanderkooij.org/
This message is using 100% recycled electrons.

Some men see computers as they are and say "Windows"
I use computers with Linux and say "Why Windows?"
(Thanks JFK, for the insight.)

References:
- Internet Explorer 0day exploit
  - From: Thor Larholm
- Re: Internet Explorer 0day exploit
  - From: Gadi Evron
- Re: Internet Explorer 0day exploit
  - From: Dragos Ruiu
- Re: Internet Explorer 0day exploit
  - From: Gadi Evron
- Re: Internet Explorer 0day exploit
  - From: Chris Stromblad
- Re: Internet Explorer 0day exploit
  - From: Zow
- Re: Internet Explorer 0day exploit
  - From: Chris Stromblad
- Re: Internet Explorer 0day exploit
  - From: Chad Perrin
- RE: Internet Explorer 0day exploit
  - From: Ken Kousky

Prev by Date: Oracle E-Business Suite - Multiple Vulnerabilities
Next by Date: dbdisplay.pl(all versions) Remote execut Vulnerability
Previous by thread: RE: Internet Explorer 0day exploit
Next by thread: RE: Internet Explorer 0day exploit
Index(es):
- Date
- Thread

Relevant Pages

RE: [Full-disclosure] 70 million computers are using Windows 98rightnow
... vulnerability is dated 20060613, less than 1 month ago, and ... published in 2006 for Windows 98 I think it is safe to say that the risk ... hacker would go about compromising 70 million Windows 98 computers. ... However, AFAIR, browser's *features* are not the main topic of this ...
(Full-Disclosure)
Re: Here we go again, more virus and spyware
... But computers are ... Do you lock your car, close the windows, put valuables out of sight in the ... well-known vulnerability. ... lies with lame equipment, not with lame people. ...
(alt.comp.anti-virus)
SecurityFocus Microsoft Newsletter #163
... MICROSOFT VULNERABILITY SUMMARY ... Bugzilla Javascript Buglists Remote Information Disclosure V... ... Microsoft Internet Explorer DHTML Drag and Drop Local File S... ... Microsoft Windows Workstation Service Remote Buffer Overflow... ...
(Focus-Microsoft)
SecurityFocus Microsoft Newsletter #176
... MICROSOFT VULNERABILITY SUMMARY ... Microsoft Windows XP HCP URI Handler Arbitrary Command Execu... ... PHPNuke Category Parameter SQL Injection Vulnerability ... Microsoft Baseline Security Analyzer Vulnerability Identific... ...
(Focus-Microsoft)
SecurityFocus Microsoft Newsletter #158
... Gamespy 3d IRC Client Remote Buffer Overflow Vulnerability ... Microsoft Windows PostThreadMessage() Arbitrary Process Kill... ...
(Focus-Microsoft)