Forums
Dumps Discussion
CompTIA
CS0-002 V1
Which of the follow...
 
Notifications
Clear all

Which of the following will BEST allow systems to continue to operate and mitigate the vulnerability in the short term?

 
CS0-002 V1
Last Post by Eldridge 1 year ago
1 Posts
1 Users
0 Likes
178 Views
RSS
 Eldridge
(@burlandeldridge)
Noble Member
Joined: 2 years ago
Posts: 713
Topic starter 05/11/2022 10:39 pm  

A remote code-execution vulnerability was discovered in the RDP for the servers running a key-hosted application. While there is no automated check for this vulnerability from the vulnerability assessment vendor, the in-house technicians were able to evaluate manually whether this vulnerability was present through the use of custom scripts. This evaluation determined that all the hosts are vulnerable. A technician then tested the patch for this vulnerability and found that it can cause stability issues in the key-hosted application. The application is accessed through RDP to a jump host that does not run the application directly. To mitigate this vulnerability, the security operations team needs to provide remediation steps that will mitigate the vulnerability temporarily until the compatibility issues with the patch are resolved.

Which of the following will BEST allow systems to continue to operate and mitigate the vulnerability in the short term?

  • A . Implement IPSec rules on the application servers through a GPO that limits RDP access from only the jump host. Patch the jump host. Since it does not run the application natively, it will not affect the software's operation and functionality. Do not patch the application servers until the compatibility issue is resolved.
  • B . Implement IPSec rules on the jump host server through a GPO that limits RDP access from only the other application servers. Do not patch the jump host. Since it does not run the application natively, it is at less risk of being compromised. Patch the application servers to secure them.
  • C . Implement IPSec rules on the application servers through a GPO that limits RDP access to only other application servers. Do not patch the jump host. Since it does not run the application natively, it is at less risk of being compromised. Patch the application servers to secure them.
  • D . Implement firewall rules on the application servers through a GPO that limits RDP access to only other application servers. Manually check the jump host to see if it has been compromised. Patch the application servers to secure them.

Show Answer Hide Answer

Suggested Answer: A

   
Quote
Topic Tags
CompTIA CySA+

Latest CS0-002 V1 Dumps Valid Version

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
Instant Download PDF
Forum Jump:
  Previous Topic
Next Topic  
Related Topics
Topic Tags:  CompTIA CySA+ (839) ,
Share: