Undercover Exploits and Vulnerabilities – 10-27-08

Looks like we have a confirmed addition to the undercover exploit list (old list). That makes 21 total since 1988.

Honorable Mention (which don't quite make the list because the
vulnerability information was not discovered due to an active exploit):

  • RealServer ../../../ overflow
  • Any of the Immunity VSC releases (Mac OS X Kernel Local, anyone?)
  • Samba bug that HDM got hacked with… [this may get elevated, I am not sure]
  • [Credits: Dave Aitel and Anton Chuvakin for the information]


Undercover Vulnerability: A vulnerability that was generally
unknown (e.g. not published on any lists, not discussed by "above
ground" security folks) until it was actively exploited in the wild.
The vulnerability was discovered through evidence of tampering or other
means, not through the usual bugfinding ritual.

Undercover Exploit: The event and/or code used to compromise a resource running the vulnerable software in the wild.

*Note: the "credit" given is not to the person who discovered the
exploit/vuln, but to the person who pointed me in the right direction.
Thanks, all.

1 comment for “Undercover Exploits and Vulnerabilities – 10-27-08

  1. July 13, 2009 at 11:39 am

    Exploiting Undercover Vulnerabilities

    For a while now, I have been tracking “undercover vulnerabilities” and exploits. These exploits are a subset of zero day (0day) exploits – while zero day attacks are focused on vulnerabilities that don’t have patches, the undercover exploit is focused …

Comments are closed.