Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.

Windows 7: Dozens of zero-day flaws exist for exploit daily, report says

10 Dec 2013   #1
A Guy

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x64 SP1
Dozens of zero-day flaws exist for exploit daily, report says

On any given day cybercriminals and nation states are in possession of as many as 100 zero-day software exploits known only to them, NSS Labs has calculated using the commercial vulnerability market as a baseline.

NSS Labs research director Dr. Stefan Frei reached this startling conclusion after studying at up to ten years’ worth of software vulnerability data from the two firms that pioneered the market for purchasing flaws from researchers, iDefense (which started its program in 2002) and TippingPoint (which started in 2005 and is now owned by Hewlett-Packard).

NSS found that iDefense’s Vulnerability Contributor Program (VCP) and HP TippingPoint’s Zero Day Initiative (ZDI) have from birth to late September 2013 published a total of 2392 vulnerabilities with an average time from purchase to public disclosure of 133 days for the VCP and 174 days for the ZDI.

In Frei’s view, this confirms the conventional wisdom that serious zero-day flaws are remaining private and potentially exploitable in attacks for long periods of time; if legitimate vendors take an average of 153 days or five months to make flaws public, cybercriminals are surely able to keep them secret for even longer.

A Guy

My System SpecsSystem Spec

 Dozens of zero-day flaws exist for exploit daily, report says

Thread Tools

Similar help and support threads for2: Dozens of zero-day flaws exist for exploit daily, report says
Thread Forum
Power utilities claim 'daily' and 'constant' cyberattacks, says report Security News
70 percent of exploit kits come from Russia, says report Security News
Cyber Spies Exploit Java and Flash Flaws Security News
Oracle to Patch Dozens of Security Flaws Tomorrow Security News
Exploit Eleonore Exploit Kit (type 1194) help! System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 11:29 AM.
Twitter Facebook Google+

Windows 7 Forums

Seven Forums Android App Seven Forums IOS App