« Another comment, another view on zero day | Main | More patent craziness »

October 15, 2006

Undercover Exploits

Pete Lindstrom over at Spire has a good article up on Undercover Vulnerabilities and Exploits which he defines as:

Undercover Vulnerability: A vulnerability that was generally unknown (e.g. not published on any lists, not discussed by "above ground" security folks) until it was actively exploited in the wild. The vulnerability was discovered through evidence of tampering or other means, not through the usual bugfinding ritual.

Undercover Exploit: The event and/or code used to compromise a resource running the vulnerable software in the wild.

I think this gets to something I was trying to say in the zero day stuff prior.  Pete has a good list of up of real undercover examples and their dates.  I am going to put my thoughts together and put something out on how I view the whole zero day thing this week.


Posted at 08:16 PM in less than zero |

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a00d83451e4d369e200d8356b445069e2

Listed below are links to weblogs that reference Undercover Exploits:

Comments

My Photo

Subscribe to my blog

Enter your email address:

Delivered by FeedBurner

Lijit Search

Blog Networks

Creative Commons License
This work is licensed under a Creative Commons Attribution-Share Alike 2.5 License.

Search

Lijit Search

Attend a Computer Forensics Boot Camp to better your skills and become a better worker

Categories

Track my blog stats

Blog powered by TypePad
Member since 10/2005

About