ZERT: aims to stop zero-day exploits by making patches available sooner

As reported by techrepublic on 30th October 2006:

Rather than waiting until "official" vendor patches become available, a new online organization—the Zeroday Emergency Response Team (ZERT)—aims to respond to release reliable non-vendor "emergency" patches for exploits as soon as they appear to pose a serious risk of exploitation. Of special interest to many users may be the ZProtector framework for patching zero-day vulnerabilities for Windows—beginning with Windows 95! As you probably know, this range includes a number of platforms no longer supported by Microsoft.

Although ZERT works with a number of security tool vendors, the organization has no direct affiliation with any particular vendor. To see how ZERT approaches emergency patching of zero-day threats as compared to the official Microsoft patches, check out this ZERT analysis PDF document of the recently patched CVE-2006-4868 vulnerability.

Written by pinolobu on November 13th, 2006 with no comments.
Read more articles on news.

• [+] Digg: Feature this article
• [+] Del.icio.us: Bookmark this article
• [+] Furl: Bookmark this article

Related articles

• Quantum cryptography: state-of-the-art, unbreakable encryption? (October 10th, 2008)
• Hackers break into US Republican VP candidate Sarah Palin’s yahoo.com mailbox (September 20th, 2008)
• Web attacks that target the clipboard (August 19th, 2008)
• DNS cache poisoning vulnerability worse than feared (August 7th, 2008)
• Citibank ATM breach highlights PIN security issues (July 31st, 2008)