Underground hackers are hawking zero-day exploits for Microsoft's new Windows Vista operating system at USD 50000 a pop, according to computer security researchers at Trend Micro. The Windows Vista exploit - which has not been independently verified - was just one of many zero-days available for sale at an auction-style marketplace infiltrated by the Tokyo-based anti-virus vendor.
To view parent comment, click here.
To read all comments associated with this story, please click here.
Member since:2005-11-11
//In short: "A zero-day exploit is one that takes advantage of a security vulnerability on the same day that the vulnerability becomes generally known." Meaning at least one exploit exists on the same day vulnerability is published. //
I think you missed the point. This isn't a zero day exploit because Vista isn't even released to the general public yet, so how can this exploit "take advantage of a security vulnerability" in an OS that no-one is yet running?
The general assumption is that Windows is heavily attacked by malware because it is the OS on most desktops, and so present the biggest pool of machines as potential targets for the malware.
That isn't the case for Vista ...
So it begs the question, why write this exploit?
Perhaps to get kudos amongst blackhats for the first zero-day for Vista, or something? Is it like a contest or something?
Member since:2005-07-06
I think you missed the point. This isn't a zero day exploit because Vista isn't even released to the general public yet, so how can this exploit "take advantage of a security vulnerability" in an OS that no-one is yet running?
A 0day isn't an exploit that's launchecd on day 0 and the clock starts ticking.The malware writers most likely have a MSDN subscription and what not other development stuff.It's pretty much feasonable a particular exploit stays underground for a couple of years before discovered by a security expert who decides to public.Once the company who makes the vulnerable program has been notified and a patch is released, the public has been notified the 0day becomes {1,2,3..}day.Some claim every major piece of software has 0day exploits routers,switches,OS's,browsers included.
Edited 2006-12-17 13:37
Member since:2005-07-07
I think you missed the point.
No:) But I think you misread my post. I perfectly know what zero day exploit is.
My comment was informing parent two things:
- What is zero day, because he was the one who thought wrong
- why would it matter even if his viewpoint of zero day would be correct.
update: since you were posting the parent post (misssed that, I'm sorry), you don't know what zero day is. Read link I posted or write "zero day exploit" in google.
In conclusion, zero day exploit can be active for several years sometimes. It will stay zero day until it is known in the world (after that counting starts). By that time Vista would be long time launched.
Edited 2006-12-17 14:26
Member since:2006-04-11
"I think you missed the point. This isn't a zero day exploit because Vista isn't even released to the general public yet, so how can this exploit 'take advantage of a security vulnerability' in an OS that no-one is yet running?"
It's been released to businesses. Does that count?
Member since:
2005-07-07
If an exploit for Vista turns up even before it is available to the general public, why is it still called a zero-day?
http://searchsecurity.techtarget.com/sDefinition/0,,sid14_gci955554...
Zero day exploit hasn't got anything to do with release date. And even if it would, there would be plenty of people already running latest beta, enterprise or so versions.
In short: "A zero-day exploit is one that takes advantage of a security vulnerability on the same day that the vulnerability becomes generally known." Meaning at least one exploit exists on the same day vulnerability is published.
Edited 2006-12-17 12:16