RE: defining 0day

To: "'Gadi Evron'" <ge@xxxxxxxxxxxx>, "'Thor (Hammer of God)'" <thor@xxxxxxxxxxxxxxx>
Subject: RE: defining 0day
From: "David Gillett" <gillettdavid@xxxxxxxx>
Date: Tue, 25 Sep 2007 14:20:52 -0700
Cc: <bugtraq@xxxxxxxxxxxxxxxxx>, "'Chad Perrin'" <perrin@xxxxxxxxxxxx>, "'Crispin Cowan'" <crispin@xxxxxxxxxx>, <Casper.Dik@xxxxxxx>, "'pdp (architect)'" <pdp.gnucitizen@xxxxxxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxxx>, "'Lamont Granquist'" <lamont@xxxxxxxxxxxxxxxx>, "'Roland Kuhn'" <rkuhn@xxxxxxxxxxxxxxxxxxxxxxxxx>
In-reply-to: <Pine.LNX.4.62.0709251359490.25733@xxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Organization: Foothill-DeAnza College District
Reply-to: <gillettdavid@xxxxxxxx>
Thread-index: Acf/q7jn6uCcvivDR7e+fQiakat94QADPybQ

> What do you, as professional, believe 0day should mean, 
> regardless of previous definitions?

  I think there is some slight residual usefulness to designating
vulnerabilities whose first public disclosure results from
discovery/analysis of an active exploit already "in the wild".  ("0 days"
thus being the elapsed time from public disclosure of the vulnerability to
appearance of a live threat exploiting it, a characteristic which an unknown
vulnerability may only aspire to, and a patched one may never live down.)

David Gillett

References:
- defining 0day
  - From: Gadi Evron

Prev by Date: Re: defining 0day
Next by Date: Re: 0day: PDF pwns Windows
Previous by thread: Re: defining 0day
Next by thread: Re: defining 0day
Index(es):
- Date
- Thread