What does Zero Day attack, vulnerability or exploit mean PDF Print E-mail
Written by Wayne   
Saturday, 21 February 2015 05:18
What does Zero Day attack, vulnerability or exploit mean
We often hear of Zero Day attacks, vulnerabilities or exploits. We have also heard of Zero Day patches. This article helps you know what is a Zero Day attack, exploit, or vulnerability. Zero Day attacks generally refer to attacks on vulnerabilities, where there is a zero day gap between the found vulnerability, and the attack taking place. A Zero-day vulnerability is a hole in software, firmware or hardware that is not yet known to the user, vendor or developer, and is exploited by hackers, before a patch for it is issued. Such attacks are called Zero-day exploits. Thus a Zero Day attack is an exploit done before the developer of the software or the manufacturer of the hardware can patch the Zero Day Vulnerability. Thus, the “vulnerability” is waiting for a patch or vendor fix, while the “attack” to exploit the vulnerability takes place. There can be many types of Zero-Day Attacks. This includes attacking a system to gain access on it, injecting a malware, spyware, or adware. This attack is done before the manufacturer is even aware of the vulnerability and hence there is a sense of emergency to patch it up. Once the patch is made available, the vulnerability is no longer a “Zero Day vulnerability”. A Zero Day vulnerability is usually detected either by hackers or by some third-party security firm. In case of hackers, they make good use of vulnerability until it is fixed. In case a third party security firm discovers a Zero Day Flaw or a Zero Day Vulnerability, they inform the manufacturers of the software or hardware system so that they can rush to work on a fix, usually known as a Zero Day patch, and give it some time to patch it. Normally, there is a Patch Tuesday at Microsoft.Microsoft uses various terms to describe the software updates and patches released by it...A complete explaination and terms used can be found at windows8newsinfo forum.
 
 

News by Day