Even the most locked-down environments can be open to attack if there are vulnerabilities in software applications deployed in the same enterprise. Identifying and mitigating these types of risks takes continual vigilance.
The nature of software vulnerabilities -- and the security assessment and testing strategies needed to prevent them -- are covered in Domain 6 of the CISSP exam. This practice quiz tests your knowledge of key concepts and vocabulary tested in Domain 6, such as spotting vulnerabilities in software, understanding their potential consequences and evaluation criteria for such risks.
CISSP® is a registered mark of (ISC)².
The following quiz is excerpted from the CISSP (ISC)2 Certified Information Systems Security Professional Official Study Guide, 7th Edition, ©2015 John Wiley & Sons, All Rights Reserved.