Bugtraq mailing list archives

RE: defining 0day

From: "David Gillett" <gillettdavid () fhda edu>
Date: Tue, 25 Sep 2007 14:20:52 -0700

What do you, as professional, believe 0day should mean, 
regardless of previous definitions?


  I think there is some slight residual usefulness to designating
vulnerabilities whose first public disclosure results from
discovery/analysis of an active exploit already "in the wild".  ("0 days"
thus being the elapsed time from public disclosure of the vulnerability to
appearance of a live threat exploiting it, a characteristic which an unknown
vulnerability may only aspire to, and a patched one may never live down.)

David Gillett

Current thread:

Re: 0day: PDF pwns Windows, (continued)
- - - Re: 0day: PDF pwns Windows Lamont Granquist (Sep 25)
    - Re: 0day: PDF pwns Windows Roland Kuhn (Sep 25)
    - RE: 0day: PDF pwns Windows Thor (Hammer of God) (Sep 25)
    - defining 0day Gadi Evron (Sep 25)
    - Re: defining 0day Brian Loe (Sep 25)
    - Re: defining 0day Gadi Evron (Sep 25)
    - Re: defining 0day Brian Loe (Sep 25)
    - Re: defining 0day Adrian Griffis (Sep 25)
    - Re: defining 0day Brian Loe (Sep 25)
    - Re: defining 0day Andrew Weaver (Sep 25)
    - RE: defining 0day David Gillett (Sep 25)
    - Re: defining 0day Charles Miller (Sep 25)
    - Re: defining 0day Gadi Evron (Sep 25)
    - Re: defining 0day Zow (Sep 27)
    - Re: defining 0day Chad Perrin (Sep 27)
    - RE: defining 0day Marvin Simkin (Sep 28)
    - Re: defining 0day Chad Perrin (Sep 28)
    - Re: 0day: PDF pwns Windows Steve Shockley (Sep 25)
    - Re: 0day: PDF pwns Windows Iggy E (Sep 25)
- Re: 0day: PDF pwns Windows Aditya K Sood (Sep 20)
  - Re: 0day: PDF pwns Windows pdp (architect) (Sep 20)

(Thread continues...)