Hacker Read

icedchai · 2021-01-07 02:52:27+00:00

Because they mostly don't matter. Where is a practical, real world exploit? (This means not POC that works under perfect conditions.)

thirsteh | karma 3544 | avg karma 4.36 · | 2013-02-16 09:33:31+00:00

A PoC and an exploit are equivalent. Attackers have saved the time trying to figure out how to leverage it.

birbie | karma 3 | avg karma 1.5 · | 2019-02-20 15:25:47

I haven't seen any POC exploits at all yet. Will be looking around this weekend.

suifbwish | karma 962 | avg karma 1.42 · | 2021-04-07 19:25:20+00:00

It’s probably safe to say that some major hacks have been made possible by security researchers publishing POCs for vulnerabilities that will inevitably never be completely patched by everyone. It’s not like a POC is just a tool that’s being abused, it literally has only one purpose.

ddtaylor | karma 11964 | avg karma 5.87 · | 2018-05-10 12:20:06+00:00

Is there a PoC exploit source?

cwkoss | karma 10969 | avg karma 2.94 · | 2019-06-11 19:36:08+00:00

Yeah, it seems that whenever an exploit "doesn't seem practical for actual use" it is just one more exploit-in-the-chain away from being operationalized.

So many systems have unspecified, undocumented and undertested behaviors that have not been exploited only because no one has ever tried.

reply

zenexer | karma 3978 | avg karma 5.3 · | 2020-11-01 21:22:41+00:00

My understanding is that it’s not a full PoC. It’s enough to crash Windows, but not enough to do more than that. An attacker would likely need to do additional work to make it relevant to them unless they’re just a prankster. Given that the disclosure says exactly where an attacker would need to start looking, it doesn’t make much difference whether a PoC is released in this case.

This isn’t always true: sometimes knowing where to look is the easy part, and crafting a working exploit is the hard part. I don’t get the impression that’s the case here.

reply

ringaroundthetx | karma 466 | avg karma 0.65 · | 2018-01-05 02:25:44+00:00

because nobody wrote the weaponized exploit yet and put it in the wild.

yuhong | karma 6263 | avg karma 1.05 · | 2013-07-14 23:28:31

Not all are exploitable.

beachhead | karma 24 | avg karma 0.8 · | 2023-09-26 19:59:42

so they're used in combination with already known exploits but you're saying no one uses them during the development of exploits?

danuker | karma 6850 | avg karma 2.78 · | 2022-02-02 04:39:16

I suspect the "doesn't matter" is the limited value lost compared to the value gained. There might not be enough black-hat hackers executing on those exploits :)

nemothekid | karma 13576 | avg karma 4.48 · | 2018-01-06 17:31:18+00:00

What do you mean by “no known exploits”? There are several PoCs out, one of which is in JavaScript for meltdown.

icedchai | karma 8478 | avg karma 1.53 · | 2020-04-11 00:51:02+00:00

Mostly FUD. It's not really exploitable in a practical real world sense. Show me the exploit that can read my password or SSH key, and not some fixed set of data that's been staged by the PoC.

lawnchair_larry | karma 10934 | avg karma 2.88 · | 2020-04-23 15:02:45+00:00

The point of pretty much all exploits is to find ways to bypass that very feature.

DarronWyke | karma 185 | avg karma 1.89 · | 2018-01-11 14:51:09+00:00

What are you talking about? We've seen working POCs since last week. This isn't "largely theoretical", this is an actively exploitable hole.

Klathmon | karma 13742 | avg karma 4.35 · | 2018-05-17 15:37:56

Haven't those been found time and time again to be trivially exploitable?

kzrdude | karma 11414 | avg karma 2.35 · | 2021-12-19 10:06:39

There are exploits that circumvent this, of course.

systematical | karma 1144 | avg karma 1.78 · | 2021-03-11 02:42:45

Cause you could never have exploits in functional...ever.

huhtenberg | karma 19854 | avg karma 3.94 · | 2011-10-21 15:14:09

You are missing the point. The probability of an exploit being ultra-low or hard to mount is not a valid justification for ignoring it altogether.

taligent | karma 3565 | avg karma 2.11 · | 2013-02-02 13:22:39+00:00

Your question is misguided. The real question is why are some technologies subject to particular exploits and others not ?

And the reason is that technologies are implemented differently.

reply