Vulnerabilities And Impacts Flashcards
What is A Race Condition?
An error condition that occurs when the output of a function is dependent on the sequence or timing of the inputs
Preventing race conditions:
-Reference counters, kernel locks, and thread synchronization
What is End-of-life?
When the system has reached a point where it can no longer function as intended
Causes:
- lack of vendor support
- failure to instantiate on newer hardware
- incompatibility with other aspects of a system
What are Embedded systems?
Systems that are included within other systems
ACL
Access control list
RPC
Remote procedure call
What is a Default Configuration?
The configuration that a system enters upon start, upon recovering from an error, and at times when operating
What is Resource Exhaustion?
The state where a system does not have all of the resources it needs to continue to function
What are Untrained Users?
Users who do not know how to operate a system properly because they haven’t received training associated with the system’s capabilities
What are Weak Cypher Suites?
Those that at one time were considered secure but are no longer considered secure
What are Memory Leaks?
Programming errors caused when a computer program does not properly handle memory resources
What is an Interger Overflow?
Programming error condition that occurs when a program attempts to store a numeric value, an interger, in a variable that is too small to hold it
DLL
Dynamic Link Libraries
What are Dynamic Link Libraries?
Pieces of code that can add functionality to a program through the inclusion of library routines linked at run time
What is DLL Injection?
The process of adding to a program at run time a DLL that has a specific vulnerability of function that can be capitalized upon by an attacker
What is System Sprawl?
When the systems expand over time, adding elements and functionality, and over time the growth and change exceeds the documentation
