Hosting Provided By

RE: defining 0day

From: David Gillett <gillettdavid(at)fhda.edu>
Date: Tue Sep 25 2007 - 17:20:52 EDT

> What do you, as professional, believe 0day should mean,
> regardless of previous definitions?

I think there is some slight residual usefulness to designating vulnerabilities whose first public disclosure results from discovery/analysis of an active exploit already "in the wild". ("0 days" thus being the elapsed time from public disclosure of the vulnerability to appearance of a live threat exploiting it, a characteristic which an unknown vulnerability may only aspire to, and a patched one may never live down.)

David Gillett Received on Tue Sep 25 18:05:28 2007

This message: [ Message body ]
Next message: Steve Shockley: "Re: 0day: PDF pwns Windows"
Previous message: Gadi Evron: "Re: defining 0day"
In reply to: Gadi Evron: "defining 0day"
Next in thread: Charles Miller: "Re: defining 0day"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 28 2007 - 06:18:00 EDT