ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-003 All Questions

View all questions & answers for the CS0-003 exam
Go to Exam

Exam CS0-003 topic 1 question 346 discussion

Actual exam question from CompTIA's CS0-003
Question #: 346
Topic #: 1
[All CS0-003 Questions]

An XSS vulnerability was reported on one of the public websites of a company. The security department confirmed the finding and needs to provide a recommendation to the application owner. Which of the following recommendations will best prevent this vulnerability from being exploited? (Choose two.)

  • A. Implement an IPS in front of the web server.
  • B. Enable MFA on the website.
  • C. Take the website offline until it is patched.
  • D. Implement a compensating control in the source code.
  • E. Configure TLS v1.3 on the website.
  • F. Fix the vulnerability using a virtual patch at the WAF.
Show Suggested Answer Hide Answer
Suggested Answer: DF 🗳️
by 1403ad2 at Feb. 22, 2025, 9:39 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
noa808a
2 weeks, 6 days ago
Selected Answer: DF
F is for sure 1/2 of the answers. For me, it's a 50/50 tossup between C and D. Taking the website offline would obviously prevent any exploitation, but would be a major hit to availability, where as implementing a compensating control would help to mitigate the vulnerability while maintaining availability.
upvoted 1 times
...
BlackSkullz
3 weeks, 4 days ago
Selected Answer: DF
I think D and F. While it does say "best way" and taking the server offline would technically be best, it just doesn't seem practical and would affect uptime and availability of company services. D and F would correct the issue at hand and keep the website up at the same time
upvoted 1 times
...
1403ad2
2 months, 2 weeks ago
Selected Answer: CF
I think fixing the server with a WAF because its public facing website and taking the website off online is possible because it mentions "one of the public websites of a company"
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago