The following is a list that gives some insight into software platform vulnerabilities:

• Buffer overflow and installed security policies are not enabled by default, including Denial of Service (DoS), lack of password encryption, and the mishandling of undefined, poorly defined, or "illegal" conditions.
• Detection/prevention software not installed, lack of sandboxing, inadequate authentication and access control for configuration and programming software, intrusion detection/prevention software, insufficient logging, incidents not detected, and so on.