A well-established patching solution is critical for remediating software vulnerabilities on endpoints. Without one, systems remain susceptible to known security flaws. Attackers create exploits, which are programs or code snippets designed specifically to take advantage of these unpatched vulnerabilities to gain control of a system. Once an exploit is successful, it is commonly used as a delivery mechanism for malware, such as ransomware, spyware, or viruses. Therefore, failing to patch endpoints directly exposes a company to the risks of being compromised by exploits and infected with malware.

B. ARP spoofing: This is a Layer 2 network-based attack that manipulates ARP tables. It is not directly prevented by applying software patches to an endpoint's operating system or applications.

C. denial-of-service attacks: While some vulnerabilities can lead to a DoS condition (e.g., a system crash), the primary and most common risks from unpatched systems are system compromise and data theft via exploits and malware.

E. eavesdropping: This is a passive network attack involving sniffing traffic. It is mitigated by network segmentation and encryption (e.g., TLS/SSL), not by endpoint software patching.

1. National Institute of Standards and Technology (NIST) Special Publication 800-40 Revision 3

Guide to Enterprise Patch Management Technologies:

Section 2.1

"The Need for Patch Management

" Page 6: "Flaw remediation is the most critical part of vulnerability management... Malicious parties can reverse engineer patches to create exploit code for the newly discovered vulnerability. Organizations that do not apply the patch promptly are vulnerable to attacks using the exploit code." This directly links the failure to patch with vulnerability to exploits.

2. Cisco

Cisco Annual Cybersecurity Report:

The 2018 report

for example

highlights the connection between unpatched systems and security incidents. Chapter 2

"Adversary Playbook

" Page 16: "Attackers continue to leverage well-known

unpatched vulnerabilities to infiltrate systems... They also continue to rely on malware as a primary tool for carrying out their campaigns." This establishes the direct relationship between unpatched vulnerabilities and malware infections.

3. Carnegie Mellon University

Software Engineering Institute (SEI)

Common Sense Guide to Mitigating Insider Threats

5th Edition:

Practice 17: "Implement a Patch Management Program

" Page 129: "Unpatched systems are vulnerable to a variety of attacks

including worms

viruses

and other types of malware... Attackers can also use unpatched vulnerabilities to gain unauthorized access to systems and data." This source confirms that a lack of patching leads to malware and unauthorized access (via exploits).