Information Security Officer Question: Download Questions PDF
Suppose what is the difference between a vulnerability and an exploit?
Answer:
A lot of people would say that they are the same thing, and in a sense they would be right. However, one is a potential problem while the other is an active problem. Think of it like this: You have a shed with a broken lock where it won’t latch properly. In some areas such as major cities, that would be a major problem that needs to be resolved immediately, while in others like rural areas its more of a nuisance that can be fixed when you get around to it. In both scenarios it would be a vulnerability, while the major cities shed would be an example of an exploit – there are people in the area, actively exploiting a known problem.
Download Information Security Professional Interview Questions And Answers
PDF
| Previous Question | Next Question |
| Explain what do you think of social networking sites such as Facebook and LinkedIn? | Explain what is SSL and why is it not enough when it comes to encryption? |