2013年4月2日 星期二

Days since last known Java 0-day exploit

http://java-0day.com/

Previous high score: 46

General info
Java-related CVEs:
web.nvd.nist.gov
No glove, no love:
How to be safe?

navigator.javaEnabled() == true
Latest patch:
Java 7u21 / 6u45

Previous high score: 3

General info
Java-related CVEs:
web.nvd.nist.gov
No glove, no love:
How to be safe?

navigator.javaEnabled() == true
Latest patch:
CVE-2013-1493
Latest 0-day(s) info
Is it still a threat? istherejava0day.com
a.k.a. "is the latest patch useless yet?"
2013-03-07: pwn2own contest.
#1 (CVE-2013-0401)
2013-03-06: pwn2own contest.
#1 (CVE-2013-1488)
#2 (CVE-2013-1491)
#3 (CVE-2013-0402)
Achievements
Close call: reach 1 week
Not 2day: reach 2 digits
Finger binary is not enough: reach 31 days
Deep Thought: reach 42 days
D3aL w17H 17: reach 1337 hours
java.lang.ArrayIndexOutOfBoundsException: reach 3 digits
Trial licence expired: reach 180 days
The Reaper's Toll: reach 1 year without getting attention

沒有留言:

張貼留言