Information Security Officer Question:
Download Questions PDF

Suppose what is the difference between a vulnerability and an exploit?

Answer:

A lot of people would say that they are the same thing, and in a sense they would be right. However, one is a potential problem while the other is an active problem. Think of it like this: You have a shed with a broken lock where it won’t latch properly. In some areas such as major cities, that would be a major problem that needs to be resolved immediately, while in others like rural areas its more of a nuisance that can be fixed when you get around to it. In both scenarios it would be a vulnerability, while the major cities shed would be an example of an exploit – there are people in the area, actively exploiting a known problem.

Download Information Security Professional Interview Questions And Answers PDF

Previous QuestionNext Question
Explain what do you think of social networking sites such as Facebook and LinkedIn?Explain what is SSL and why is it not enough when it comes to encryption?