Out of the ten CVEs listed, six were originally exploited as 0day, and four were trivially exploitable (three logic bugs, and one target with no DEP/ASLR). What does this tell us?
-
-
@threadreaderapp kindly unroll -
Saluti, here is your unroll:
@benhawkes: This is a list of the most commonly exploited vulnerabilities between 2016 and 2019, from CISA and FBI.… https://threadreaderapp.com/thread/1262776020127510531.html … Enjoy :)
End of conversation
New conversation -
-
-
Amazing writeup Ben, thanks for sharing! (this should be a blog post ;))
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
I think the underlying motivation for releasing exploits is important to consider on a case-by-case basis.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.