Comments on: Updated Undercover Exploit List

By: Spire Security Viewpoint

Spire Security Viewpoint — Thu, 21 Aug 2008 01:22:48 +0000

Undercover Vulnerability List – Request for Updates

There has been a bit of activity on one of my old undercover vulnerability list pages. Here is the current list but I am fairly sure it is outdated. Note that these are undercover vulnerabilities that were discovered (by the good guys) via an exploit i…

By: Pete

Pete — Wed, 09 Jan 2008 14:48:50 +0000

@sigsegv -

Thanks for the comment. If you have URLs you can send me with details, that would be great. In most cases, these turn out to be “zero days” (at least by today’s definition) but not undercover exploits – that is, the vulnerability was found by identifying an exploit in the wild.

I would love to have as complete a list as possible. Thanks.

Pete

By: sigsegv

sigsegv — Wed, 09 Jan 2008 12:48:31 +0000

What about some other 0days that were not discussed, like the Apache exploits, OpenSSH and CVS exploits from the early 2000′s?

By: kurt wismer

kurt wismer — Tue, 20 Nov 2007 17:30:25 +0000

“I am open to suggestions on an easy way to do this with TypePad (TypeLists, maybe?).”

no idea about typepad’s capabilities, but if i were to do something similar to that (oh wait, i do) i’d use del.icio.us linkrolls… you’d miss out on the ability to do multiple links per bullet point though…