Chapter 30 Β· Flashcards

OS Vulnerabilities Flashcards

Click any card to reveal its definition.

0 / 12 flipped
Operating System Vulnerability
Tap to reveal
A security flaw in OS code that can be exploited to allow unauthorized actions. Because every device runs an OS, these flaws affect every application and user on the system. Vulnerabilities arise from coding errors, design flaws, or unanticipated component interactions β€” and may exist undiscovered for months or years.
Why is the OS such a big target?
Tap to reveal
Because every computer runs one. This universality makes the OS the most attractive attack surface β€” a single vulnerability in a widely-deployed OS version affects millions of systems simultaneously. Combine that with tens of millions of lines of code and the mathematical certainty of undiscovered flaws, and the OS becomes the highest-value target for attackers.
Patch Tuesday
Tap to reveal
Microsoft's scheduled monthly security update, released on the second Tuesday of each month. A single Patch Tuesday may include dozens of patches addressing multiple vulnerability categories. Other major vendors follow similar scheduled cycles. The predictable schedule lets organizations plan testing β€” but also signals to attackers when new vulnerability details will be published.
Remote Code Execution (RCE)
Tap to reveal
A vulnerability allowing an attacker to run arbitrary code on a target system remotely β€” without physical access. The most severe OS vulnerability category. A successful RCE exploit gives the attacker full code execution capability: they can install malware, create backdoors, exfiltrate data, or take complete control of the system.
Elevation of Privilege (EoP)
Tap to reveal
A vulnerability allowing an attacker or process to gain higher system privileges than granted. A standard user exploiting an EoP flaw might gain administrator or SYSTEM-level access. Often used as the second stage of an attack: gain initial limited access, then use EoP to escalate to full control.
Security Feature Bypass
Tap to reveal
A vulnerability allowing an attacker to circumvent a built-in OS security control β€” such as User Account Control (UAC), code signing enforcement, or Secure Boot. Does not directly grant access or execute code, but removes a layer of protection that other exploits rely on being blocked by.
Zero-Day Vulnerability
Tap to reveal
A vulnerability known to attackers but with no patch available β€” either because the vendor is unaware, or a fix hasn't been released yet. The most dangerous category: there is no patch to apply. Mitigation must rely on compensating controls β€” disabling the affected feature, network segmentation, enhanced monitoring β€” while waiting for a vendor fix.
The Patching Race
Tap to reveal
The competition between organizations deploying patches and attackers developing exploits. When Microsoft publishes a patch, it reveals the vulnerability's existence. Attackers reverse engineer the patch to identify the flaw and develop exploit code. The window between patch release and working exploit availability may be hours to days. Organizations must patch faster than attackers can weaponize.
Staged Rollout
Tap to reveal
A patch deployment strategy applying updates progressively: isolated test environment first β†’ small pilot group β†’ full production. Allows detection of compatibility issues before they affect all systems. Balances patch speed against operational stability. The test phase catches patches that break business-critical applications before the damage is widespread.
Restart-Pending Status
Tap to reveal
The state of a system that has downloaded and installed a patch but has not yet rebooted. Core OS patches β€” kernel changes, driver updates, security subsystem modifications β€” do not take effect until a restart flushes old code from memory. A system showing "installed" but not yet rebooted is NOT protected by that patch.
Fallback Plan / Rollback
Tap to reveal
A recovery path that allows restoration of a system to its pre-patch state if a patch causes problems. Typically implemented via system images or snapshots taken before Patch Tuesday deployment. Without a fallback plan, a patch that breaks a critical application may cause hours of downtime. With one, affected systems can be restored in minutes.
MSRC
Tap to reveal
Microsoft Security Response Center β€” Microsoft's official resource for security update information, vulnerability disclosures, and patch details. Available at msrc.microsoft.com. Security professionals use the MSRC to track Patch Tuesday releases, review CVE details, check CVSS severity scores, and monitor for critical out-of-band updates.