Click Expand all to read through the information.

$4$

Click the link www$.$icasi.org$/$cvrf$/($or enter it into another tab in your browser$).$ What is the Common Vulnerability Reporting Framework $($CVRF$)?$ How is it used?

$5$

Return to the Microsoft Security Update Guide and then the MSRC main page.

$6$

Click the Go to the Security Update Guide button.

$7$

If no security updates appear, adjust the From date to the first day of the previous month.

$8$

Scroll through the list of security updates.

$9$

Click the first link under Article.

$10$

Read through this information.

$11$

Now return to the previous page and select another article to read.

$12$

How useful is this information? Is it presented in a format that is helpful?

$13$

Now click the CVE link under Details and read this information. Note the detail of this information.

$14$

Read the information under Exploitability Assessment $($if the exploit you selected does not list an Exploitability Assessment, then select another that does include the assessment$).$ What does this mean? Open another tab on your web browser, and search for Microsoft Exploitability Index. Read through the description that you find and keep this tab open.

$15$

Return to the Microsoft Security Update Guide and view the Exploitability Assessment. How serious is this security vulnerability?

$16$

How important is this information to a security professional? How easy is this online database to use?