ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-003 All Questions

View all questions & answers for the CS0-003 exam
Go to Exam

Exam CS0-003 topic 1 question 78 discussion

Actual exam question from CompTIA's CS0-003
Question #: 78
Topic #: 1
[All CS0-003 Questions]

Patches for two highly exploited vulnerabilities were released on the same Friday afternoon. Information about the systems and vulnerabilities is shown in the tables below:





Which of the following should the security analyst prioritize for remediation?

  • A. rogers
  • B. brady
  • C. brees
  • D. manning
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by kmordalv at Sept. 10, 2023, 9:03 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Pesos
Highly Voted 7 months, 4 weeks ago
Can't remember the answer? Just picture a goat
upvoted 20 times
...
throughthefray
Highly Voted 1 year ago
Selected Answer: B
This one caught me for a second. I was thinking the network segment that was internal would be higher prioritized. However an external facing server (meaning a server that is accessible to the public like a webserver) would be more easily accessible to an attacker than a server that an attacker would have to get into the internal network first.
upvoted 15 times
...
daddylonglegs
Most Recent 11 months ago
Selected Answer: B
Remote code execution on an public facing system can lead to that host becoming a foothold in the network for the attacker to launch further attacks from. First system to patch should be brady.
upvoted 3 times
dave_delete_me
7 months, 2 weeks ago
This is TRUE!
upvoted 1 times
...
...
VVV4WIN
1 year ago
More info on segmentation............... Types of network segmentation Physical segmentation uses dedicated hardware to build segments. While physical segmentation is the most secure method, it is also the most difficult to manage. Also known as perimeter-based segmentation, each segment needs its own internet connection, physical wiring and firewall. This type of segmentation operates on trust, in which anything internal is trusted and anything external is not. There are few restrictions on internal resources, which commonly operate over a flat network with minimal internal network segmentation.
upvoted 1 times
...
VVV4WIN
1 year ago
Selected Answer: C
Should it not be brees? brees is located in an internal part of the network, which can now effectively be accessed by an external threat thanks to the Remote Code Execution nature of the vulnerability, meaning the system is now an Insider Threat I am thus voting for C
upvoted 2 times
daddylonglegs
11 months ago
No, the answer is B (brady). Internal means behind a firewall, external means publicly facing. The external threat still has to connect to the internal asset to exploit the RCE vulnerability, which it will be unable to do without either exploiting a vulnerability or misconfiguration of the firewall or somehow gaining persistence on a different internal host. A remote code execution flaw on an externally facing host is always more serious, as that host could then be a pivot point to perform lateral movement from.
upvoted 2 times
...
deeden
1 year ago
Attacker would have to bypass Firewall or possibly IPS to exploit RCE on a machine inside a network. External facing machines will often be the priority.
upvoted 3 times
...
...
[Removed]
1 year ago
Selected Answer: B
B) Brady Between A) rogers and B) Brady. I'm going with Brady since it's external facing whereas Rogers may have both vulnerabilities, but it's in its own isolated VLAN, so it's well-contained already.
upvoted 3 times
...
kmordalv
1 year, 3 months ago
Selected Answer: B
Since Rogers is isolated in a VLAN network, this option is ruled out. Of the remaining options, I believe brady would have the greatest impact on the system.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel