Which could be described as a Threat Vector?
Which could be described as a Threat Vector?
A . A web server left6 unpatched and vulnerable to XSS
B . A coding error allowing remote code execution
C . A botnet that has infiltrated perimeter defenses
D . A wireless network left open for anonymous use
Answer: A
Explanation:
A threat vector is the method (crafted packet) that would be used to exercise a vulnerability (fragmentation to bypass IDS signature). An unpatched web server that is susceptible to XSS simply describes a vulnerability (unpatched) paired with a specific threat (XSS) and does not touch on the method to activate the threat. Similarly, the coding error that allows remote code execution is simply describing the pairing of a vulnerability with a threat, respectively. The botnet is an unspecified threat; there is no indication of how the threat was activated (or it’s intention/capabilities; the threat).
Latest GCED Dumps Valid Version with 88 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund