ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-005 All Questions

View all questions & answers for the CAS-005 exam
Go to Exam

Exam CAS-005 topic 1 question 233 discussion

Actual exam question from CompTIA's CAS-005
Question #: 233
Topic #: 1
[All CAS-005 Questions]

A company's security policy states that any publicly available server must be patched within 12 hours after a patch is released. A recent IIS zero-day vulnerability was discovered that affects all versions of the Windows Server OS:



Which of the following hosts should a security analyst patch first once a patch is available?

  • A. 1
  • B. 2
  • C. 3
  • D. 4
  • E. 5
  • F. 6
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by ec566d2 at May 7, 2025, 9:26 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
tytexas1111
1 month, 2 weeks ago
Selected Answer: D
It's D due to it having IIS installed and due to it being open externally with no WAF infront of it.
upvoted 3 times
...
ec566d2
1 month, 2 weeks ago
Selected Answer: D
Host 4 is: - Externally available - NOT behind a WAF - Has IIS installed => vulnerable to the zero-day putting it at the highest risk.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel