CompTIA Security+ (SY0-501) — Question 588

Which of the following BEST describes a security exploit for which a vendor patch is not readily available?

Answer options

• A. Integer overflow
• B. Zero-day
• C. End of life
• D. Race condition

Correct answer: B

Explanation

The correct answer is B, as a zero-day exploit refers to a vulnerability that is exploited before the vendor has released a patch. Option A, integer overflow, is a type of vulnerability but may have patches available; Option C, end of life, indicates software no longer supported but doesn't specifically relate to new exploits; Option D, race condition, is a concurrency issue that can also have patches available.