Monday, February 16, 2004

Microsoft's 200 day patch

So, if the world had at least 200 days to play with a known vulnerability, why didn't anyone report any exploits? 200 days is not so long that folks couldn't go back through their logs for anomalous events and see if there were any compromises involving the vulnerability... or could it be that the idea of zero-day, or 'negative day' exploits is more myth than reality?


4:04:39 PM    comment []


© Copyright 2004 Pete Lindstrom .
Last update: 3/1/2004; 2:18:45 AM .

Click here to visit the Radio UserLand website. Valid CSS! Subscribe to "Spire Security News and Views" in Radio UserLand. Click to see the XML version of this web page. Click here to send an email to the editor of this weblog.