What is the disadvantage of an automated vulnerability assessment tool?

What is the disadvantage of an automated vulnerability assessment tool?

What is the disadvantage of an automated vulnerability assessment tool?

A.
Ineffective

B.
Slow

C.
Prone to false positives

D.
Prone to false negatives

E.
Noisy

Explanation:
Vulnerability assessment tools perform a good analysis of system vulnerabilities;
however,they are noisy and will quickly trip IDS systems.

Show Hint

Leave a Reply 5

Your email address will not be published. Required fields are marked *

Mike

Mike

“D. Prone to false negatives” is also disadvantage of VSs.

Reply

Q 

Q 

The correct answers are C, D, and E.

False positive: Automated tools are not like human security testers, who can infer, adjust, retry, and then double confirm.

False negative: What vulnerability scanners can do are limited to the number of the plugins or vulnerability definitions. They cannot detect new vulnerabilities without updating thus result in false negatives.

Reply

None

None

C,D, and E may be the logical answers but, ACCORDING TO ECCOUNCIL, which is the correct answer?

Reply

Bill

Bill

according to EC Council’s training material, the answer is it is noisy. This is not a multiple choice question on the exam, it is a single answer question.

Reply