Vupen selling Windows 8 zero-day bug to highest bidder

Written by Andre Yoskowitz @ 04 Nov 2012 1:05 User comments (5)

French security firm has announced they are selling a Windows 8 zero-day exploit to the highest bidder.

Vupen writes: "Our first 0day for Win8+IE10 with HiASLR/AntiROP/DEP & Prot Mode sandbox bypass (Flash not needed)."

The firm specializes in finding vulnerabilities in software, most notably from companies like Microsoft, Apple and Adobe.

However, Vupen is no saint. The company sells its research to third-parties, normally in governments and companies, without sharing the details with the affected software makers. The software makers can also purchase the research, and many do.

The new exploit is for the new Windows 8 OS, and also includes the Internet Explorer 10 browser. Vupen has not yet shared the details with Microsoft.

Our first 0day for Win8+IE10 with HiASLR/AntiROP/DEP & Prot Mode sandbox bypass (Flash not needed) is ready for customers. Welcome #Windows8
-- VUPEN Security (@VUPEN) October 30, 2012

Tags: Exploits Windows 8 vupen security firm

<Mozilla: 'Glitch' cost us millions of downloads >Sharp: We may not make it

5 user comments

15.11.2012 12:45

megadunderhead

Send private message to this user

Senior Member

ha ha ha ha ha ha ha ha ha ha ha ha ha rolmao ha ha ha ha i knew windows 8 wasn't cleared of bugs

25.11.2012 18:13

bobiroc

Send private message to this user

Senior Member

Originally posted by megadunderhead:
ha ha ha ha ha ha ha ha ha ha ha ha ha rolmao ha ha ha ha i knew windows 8 wasn't cleared of bugs

Please find an operating system or piece of software that is. There isn't one.

38.11.2012 10:49

ronatola

Send private message to this user

Junior Member

I wonder how much it would cost MS to purchase?

48.11.2012 18:37

LeeC22

Send private message to this user

Newbie

Originally posted by megadunderhead:
ha ha ha ha ha ha ha ha ha ha ha ha ha rolmao ha ha ha ha i knew windows 8 wasn't cleared of bugs

Neither is iOS... hence the latest update from Apple, that fixes numerous bugs, that installing the bug riddled iOS 6 gave you.

I'm sure the OS that you're capable of writing, won't have bugs though... probably won't be any code to have bugs in.

59.11.2012 19:49

pmshah

Send private message to this user

Member

Why not ? Someone has to pay for their time and effort. Antivirus software companies do get paid why not VUPEN?

Comments have been disabled for this article.

	VLC hits milestone: over 5 billion downloads (16 Mar 2024 4:31) VLC Media Player, the versatile video-software powerhouse, has achieved a remarkable feat: it has been downloaded over 5 billion times. 1 user comment
	Sideloading apps to Android gets easier, as Google settles its lawsuit (19 Dec 2023 11:09) Google settled its lawsuit in September 2023, and one of the settlement terms was that the way applications are installed on Android from outside the Google Play Store must become simpler. In the future, installing APK files will be easier. 7 user comments
	Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets (06 Jun 2023 9:19) Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.
	Neato, the robot vacuum company, ends its operations (02 May 2023 3:38) Neato Robotics has ceased its operations. American robot vacuum pioneer founded in 2005 has finally called it quits and company will cease its operations and sales. Only a skeleton crew will remain who will keep the servers running until 2028. 5 user comments
	How to Send Messages to Yourself on WhatsApp (20 Mar 2023 1:25) The world's most popular messaging platform, Meta-owned WhatsApp has enabled sending messages to yourself. While at first, this might seem like an odd feature, it can be very useful in a lot of situations. .... 18 user comments

	Windows 11: Check if TPM is enabled on your computer In this short guide we will look at how you can check the status of Trusted Platform Module (TPM) on your PC ahead of the coming launch of Windows 11.
	Guide: Phone battery drains quickly - how to fix (iPhone / Android) In this guide, we go through the most typical reasons for rapid battery drain with phones, and look at potential reasons or solutions.
	HOWTO: Install Netflix App on rooted Android device 'This app is no longer compatible with your device. Contact the developers for more info.' If you are getting this message from Google Play when trying to install Netflix, then maybe this little guide can help you.
	HOWTO: Boot Android device into Safe Mode Are you having trouble with your Android device? If you find that your device has become sluggish, is freezing, takes too long to boot or any of a host of other performance concerns, you may want to boot into Safe Mode.
	GUIDE: Wi-Fi speeds are slow? Here are some tips Having problems with Wi-Fi speed and stability at home? Here are some tips to follow to alleviate the issues. 1 user comment

Vupen selling Windows 8 zero-day bug to highest bidder

5 user comments

Latest news

Reviews

Guides

News archive

Subscribe

Sections:

Follow us:

	Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.
	Review: Samsung Jet Bot 90 AI+ - a high-end robot vacuum cleaner Samsung's Jet Bot 90 AI+ is a top-class robot vacuum cleaner that can avoid obstacles and empty its own dust container. Here we review the product. 1 user comment
	Samsung Jet Bot 80+ review - excellent robot vacuum cleaner We review Samsung's Jet Bot 80+ robot vacuum cleaner over a period of three months. 1 user comment