Shostack + Friends Blog Archive

 

OSVDB Blog

Speaking of distributed innovation, the Open Source Vulnerability Database [http://www.osvdb.org/] is a great project, dedicated to accumulating deep technical knowledge about computer security vulnerabilities, and making it freely available. And now it turns out, they have a blog! Mark Ward has an interesting article, “Predicting Vulnerabilities, Quotes and more.” [link to http://www.osvdb.org/blog/?p=7 no longer works]

When the patch comes out, many people will reverse engineer it to figure out the vulnerability as most of us know. On the same note, like the exploits, IDS signatures follow the exploits that follow the patches. So if an unpatched ‘0-day vulnerability’ is being exploited, how do we know? There will be a significantly lower chance of detecting such an attack to know this statement is true.

(I’ve offered a way to test this in “Proof Of Concept Code, Boon or Bane,” and “Microsoft pre-warning of patches.”)

One comment on "OSVDB Blog"

  • elamb says:

    Thanks for the great resource. That Vulnerability Database is very extensive. Cool site.

Comments are closed.