Full Disclosure mailing list archives
Re: 0day: PDF pwns Windows
From: Roland Kuhn <rkuhn () e18 physik tu-muenchen de>
Date: Tue, 25 Sep 2007 19:57:59 +0200
On 25 Sep 2007, at 00:57, Lamont Granquist wrote:
The exploit is not made public by its use. The exploit is not even made public by (back-channel) sharing amongst the hacker/cracker community. The exploit is only made public if detected or the vulnerability is disclosed. Until detected/disclosed the hacker/ cracker can use their 31337 0day spl01tz to break into whichever vulnerable machines they like. 0day exploits are valuable because the opposition is ignorant of them.Posting exploits to BUGTRAQ, however, inherently makes them not 0day...
And my ignorant self thought until this thread that the "0" in the term referred to the number of days of head start granted to the vendor. Silly me. Because that would make all vulnerabilities published without prior warning to the vendor a "0day"...
Roland (who seems to remember that this was once the meaning of this term)
Attachment:
PGP.sig
Description: This is a digitally signed message part
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: 0day: PDF pwns Windows, (continued)
- Re: 0day: PDF pwns Windows Gadi Evron (Sep 20)
- Re: 0day: PDF pwns Windows Crispin Cowan (Sep 20)
- Re: 0day: PDF pwns Windows coderman (Sep 20)
- Re: 0day: PDF pwns Windows scott (Sep 20)
- Re: 0day: PDF pwns Windows Steven Adair (Sep 21)
- Re: 0day: PDF pwns Windows Casper . Dik (Sep 21)
- Re: 0day: PDF pwns Windows J. Oquendo (Sep 21)
- Re: 0day: PDF pwns Windows Crispin Cowan (Sep 20)
- Re: 0day: PDF pwns Windows Crispin Cowan (Sep 23)
- Re: 0day: PDF pwns Windows Chad Perrin (Sep 25)
- Re: 0day: PDF pwns Windows Lamont Granquist (Sep 25)
- Re: 0day: PDF pwns Windows Roland Kuhn (Sep 25)
- Re: 0day: PDF pwns Windows Thor (Hammer of God) (Sep 25)
- defining 0day Gadi Evron (Sep 25)
- Re: defining 0day Brian Loe (Sep 25)
- Re: defining 0day Gadi Evron (Sep 25)
- Re: defining 0day Brian Loe (Sep 25)
- Re: defining 0day Epic (Sep 25)
- Re: defining 0day Adrian Griffis (Sep 25)
- Re: defining 0day Brian Loe (Sep 25)
- Re: defining 0day Andrew Weaver (Sep 25)
- Re: 0day: PDF pwns Windows Gadi Evron (Sep 20)
- Re: defining 0day don bailey (Sep 25)