Acidus wrote:
I knew it was only a matter of time before I had to start filtering out poorly written and technically incompetent XSS "0day" posts on WebAppSec. I just hoped it would have lasted a little longer. This attack is known as 0day because it has just been reported to public and this is first day of public vulnerability, and 0day means 'published.'
... [sigh] There is so much wrong with this sentence my head might just explode.
Heh, well, often 0day is used to refer to a situation where the exploit is circulating before the patch comes out, so I can imagine how someone might have gotten the wrong idea. Whats more bizarre to me than this person's confusion is the fact that corporations latched on to terms like 0day to refer to the status of computer security issues in the first place. RE: Heys, I has a XSS W0rm | 
