ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam
Go to Exam

Exam CAS-004 topic 1 question 86 discussion

Actual exam question from CompTIA's CAS-004
Question #: 86
Topic #: 1
[All CAS-004 Questions]

A networking team asked a security administrator to enable Flash on its web browser. The networking team explained that an important legacy embedded system gathers SNMP information from various devices. The system can only be managed through a web browser running Flash. The embedded system will be replaced within the year but is still critical at the moment.
Which of the following should the security administrator do to mitigate the risk?

  • A. Explain to the networking team the reason Flash is no longer available and insist the team move up the timetable for replacement.
  • B. Air gap the legacy system from the network and dedicate a laptop with an end-of-life OS on it to connect to the system via crossover cable for management.
  • C. Suggest that the networking team contact the original embedded system's vendor to get an update to the system that does not require Flash.
  • D. Isolate the management interface to a private VLAN where a legacy browser in a VM can be used as needed to manage the system.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Cock at March 17, 2023, 4:54 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
BiteSize
1 year ago
Selected Answer: D
Isolating to a private VM containerizes all endpoint vulnerabilities. Segmenting a dedicated VLAN only allows those two devices to interact with each other, air-gapped and not exposed to the outside world Administrative actions and interactions with devices should be in an air-gapped, out-of-band network, or jump server anyways. Source: Verifying each answer against Chat GPT, my experience, other test banks, a written book, and weighing in the discussion from all users to create a 100% accurate guide for myself before I take the exam. (It isn't easy because of the time needed, but it is doing my diligence) Source: Verifying each answer against Chat GPT, my experience, other test banks, a written book, and weighing in the discussion from all users to create a 100% accurate guide for myself before I take the exam. (It isn't easy because of the time needed, but it is doing my diligence)
upvoted 2 times
...
p1s3c
1 year, 2 months ago
Option D is the best way to mitigate the risk. By isolating the management interface to a private VLAN, the security administrator can limit the exposure of the Flash-enabled web browser to the rest of the network. This would help to contain any potential security threats that may be associated with Flash. Additionally, using a VM with a legacy browser would help to prevent any vulnerabilities from affecting the host system. This solution allows the networking team to continue to use the legacy embedded system while reducing the risk of a compromise until it can be replaced with a modern system.
upvoted 3 times
...
Cock
1 year, 4 months ago
Selected Answer: D
Agree with the aswer
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel