Oooh, zero days...

by Anton Chuvakin

Related link: http://www.securityfocus.com/news/9100



"Zero day exploits are upon us" and "zero day vulnerabilities are imminent" claims this paper. Funny they'd mention :-) Some "industry insiders" have long claimed that zero-days have been with us for a long time, we just didn't know (which is the whole point of a novel attack - a "zero day" - people don't know when its used...)


I should note that the whole concept of exposure window ("window shrinks between the discovery of vulnerabilities and the exploits that follow them") doesn't really apply to zero days. Here is why: the public "discovery" of a vulnerability happens after somebody is actually hacked through one of those holes using an exploit.


Another funny part is that they imply that timely patching will somehow help with zero-days. While system hardeding might help (if you are lucky), patching probably won't - zero day implies there is no patch...