[Gllug] latest zero day Word flaw

Chris Bell chrisbell at overview.demon.co.uk
Thu Dec 7 07:35:28 UTC 2006


On Thu 07 Dec, Matthew Smith wrote:
> On 6 Dec 2006, at 17:42, Richard Jones wrote:
> 
> >>
> >> Please excuse my ignorance, but what is a "zero-day attack"?
> >
> > I think he means a zero day exploit: One which appears in the wild and
> > for which there is no patch.
> >
> > http://en.wikipedia.org/wiki/Zero_day
> >
> 
> Does it not actually mean as the Wikipedia entry you linked to said:  
> an exploit found on the same day as the software is released?  As in  
> "zero-day warez": cracked software released the same day as the real  
> thing.
> 
> So is this exploit really "zero-day"?  If it is, it must only refer  
> to the very new version of Office.
> 
> Matt

   It is just one of the many unpatched security flaws that apply to
software associated with "standard PCs" running Microsoft products. If they
are found by security specialists, and ignored by the supplier, they are
often reported openly with the intention of prodding the supplier into
action. If they are found by spammers/criminals the first indication may be
a proof of concept open trial or a full attack. I am running a firewall with
the Snort intrusion detection system which has literally thousands of check
rules, mainly for attacks against known Microsoft exploits.

-- 
Chris Bell

-------------- next part --------------
-- 
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug


More information about the GLLUG mailing list