Bitten by old bugs
Posted Aug 14, 2003 6:17 UTC (Thu) by proski
In reply to: Bitten by old bugs
Parent article: Bitten by old bugs
While the majority of bugs probably turn out not to have been exploitable, it's remarkable how many are.
However, the attacker needs only very specific vulnerabilities. If the attacker has no local account, s/he needs a remote exploit. Many holes require social engineering to be exploited - they may be useless against smart users. Most software is not directly listening to the ports - it needs to be run by other software or by one of the user (often by root). Double free in a piece of software that nobody runs on untrusted data is useless.
The ready supply of old bugs is probably also the reason that we have so rarely seen attacks on code repositories such as just happened to the FSF's ftp site.
As far as I know, it was a brand new bug that didn't have a fix released at the time it was exploited.
to post comments)