Vulnerability Analysis

Question 1

What does the term vulnerability assessment mean?

Answer 1

Vulnerability assessment plays a major role in providing security to any organizations resources and infrastructure from various interanl and exteral threats.

Question 2

What are the different vulnerability scoring systme and databases?

Answer 2

Base
Threat
Environmental
Supplemental

Question 3

What does Base Metric CVSS tell you?

Answer 3

Represents the intrinsic characteristics of a vulnerability that are constant over time and across user enviornments.

Question 4

What does Threat Metric CVSS tell you?

Answer 4

Reflects the characteristics of a vulnerability that are relevant and unique to a particular consumers environment.

Question 5

What does Environmental Metric CVSS tell you?

Answer 5

REpresents the characteristics of a vulnerability that are relevant and unique to a particular consumers environment.

Question 6

What does Supplemental Metric CVSS tel you?

Answer 6

Includes metrics that provide context as well as describe and measure additional extrinsic attributes of a vulnerability.

Question 7

What are the 6 vulnerability assessment tools?

Answer 7

Host-Based Vulnerability assessment tools
Depth assessment tools
Application Layer vulnerability assessment tools
Scope assessment tools
Active and passive tools
Location and Data examination tools

Question 8

What are Host-Based Vulnerablility assessment tools features?

Answer 8

These host-based scanners can detect high levels of vulnerabilities and probide required infromation about the fixes.

Question 9

What are Depth assessment tools features?

Answer 9

Depth assessment tools are used to discover and identify previously unknown vulnerabilities ina system. Tools such as fuzzers which provide arbitrary input to a systems interface are used to identify vulnerabilites to an unstable depth.

Question 10

What are application-layer vulnerability assessment tools features.

Answer 10

OBserving system vulnerabilities through the internet using an exterior router, firewall or webserver. These vulnerabilities could be externals DDOS threats, network data interception or other issues.

Question 11

What are Scope assessment tools features?

Answer 11

They provide standatd controls and a reporting interface that allows the user to select a suitable scan.

Question 12

What are the Active and passive tools features?

Answer 12

Active scanners perform vulnerability checks on the network functions. The administrator has control over the timing and the parameters of the scans.
Passive scanners only ovserve system data and perform data processing on a separate analysis machine. Does not use lots of resources.

Question 13

What are the Location and Data examination tools Features?

Answer 13

Network based scaners
Agent-based scanner
proxy scanner
cluster scanner

Question 14

What are the key points for a vulnerability assessment report?

Answer 14

Vulnerability name
Mapped CVE ID
Date of discovery
The CVE score
Detailed description of the vulnerability
Impact of the vulnerability
Details regarding the affected systems
Details regarding the process needed to correct the vulnerability, including information patches, onfiguration fixes and ports to be blocked
A proof of concept of the bulnerability for the system.

Question 15

Vulnerability classifcation:

Answer 15

Misconfigurations/Weak configurations:
Network Misconfigurations:
Insecure Protocols, Open ports and services, erros, weak encryption.
Host Misconfirguations:
Open permissions, unsecured root accounts
Aplication Flaws:
Buffer over flows
Memory Leaks
Resource Exhaustion
Integer Overflows
Null Pointer/Object Dereference
DLL Injection
Race Conditions:
Time of Check/Time of Use
Improper Input Handling
Improper Error Handling
Code Signing Weakness
Poor patch management