A newly discovered flaw in a software application would be considered which kind of security vulnerability?
A. Input validation flaw
B. HTTP header injection vulnerability
C. 0-day vulnerability
D. Time-to-check to time-to-use flaw
2 Comments on “which kind of security vulnerability?”
Miguelsays:
C
Joshua Dreifreundsays:
C is best answer, but only correct if the vulnerability was discovered today. “Newly discovered” might be something that was discovered last week, and already had patch released for it. 0-day is either just announced/discover today or completely new.
C
C is best answer, but only correct if the vulnerability was discovered today. “Newly discovered” might be something that was discovered last week, and already had patch released for it. 0-day is either just announced/discover today or completely new.