HP OSMS white paper: Security of Open Source Middleware Stacks

Also, there are other exploits that are not yet widespread or well known, but are equally potent. For

example, vigilant patching does not prevent a zero day attack. These exploits are too new, and a patch

does not exist to fix the flawed software they exploit. Similarly, other security techniques that rely on the

prior knowledge of vulnerabilities and exploit signatures cannot protect a system from zero day attacks.

Signature-based intrusion detectors, firewalls, and virus detection tools cannot detect attacks that have

the most-recent security patches is paramount for reducing exposure to known vulnerabilities. Patch

management is a means for reducing the largest factor of intrusion exposure. The vigilant and timely

application of security patches is the most important item on a security checklist.

The battle between software developers and software crackers is ongoing. An exploit represents a moment

of opportunity for attackers to penetrate a system before patches are applied that return the system to a

secure state. Software crackers attempt to gain advantage by finding and exploiting security holes, while

software developers endeavor to close the holes. This pattern repeats in the exploit life cycle, so applying

timely security updates is always critical.

After a vulnerability announcement, a flaw is likely to become a cracking target. Often, in an attempt to

developer. The developer does not divulge the existence of the vulnerability to prevent crackers from

exploiting it until a fix is available. Meanwhile, the developer quickly develops and thoroughly tests a

patch. Unfortunately, when the announcement of a vulnerability coincides with the release of the patch,

a new threat arises. Crackers are adept at reverse-engineering patches and producing exploits in a short