A security analyst needs to recommend a remediation to the following threat:
Which of the following actions should the security analyst propose to prevent this successful exploitation?
CAS-004 Exam QuestionsBrowse all questions from this exam
CAS-004 Exam - Question 157
Show AnswerHide Answer
Correct Answer: A
The security issue highlighted in the question appears to be related to Directory Traversal and Command Injection attacks. This is evident from the pattern observed in the HTTP requests, which attempt to access the system command line to execute commands and traverse directories. The most effective way to prevent such exploits is by patching the system. Patching addresses known vulnerabilities in the software by updating it with fixes and security improvements. Ensuring the system is up-to-date with the latest security patches will help in mitigating these threats.
Discussion
7 comments[Removed]Option: A
Nov 13, 2022This is Directory Traversal and Command Injection attack You want to reconfigure your web server, AKA patch the system.
SloananneOption: A
Sep 26, 2022Looks like command injection over HTTP. You need to patch the system frequently or use a WAF or input validation.
adamwellaOption: D
Sep 20, 2022TLS 1.2 is outdated so would not be the answer.
[Removed]Option: A
Nov 1, 2022The answer cant be: C because the question clearly states that "organization requires a legacy system to incorporate reference data into a new system" an air-gapped system can't incorporate reference data into the new system. jump-boxes are usually placed in the DMZ but they can be placed anywhere believed to have a high risk of being compromised. A jump server is an intermediary device responsible for funneling traffic through firewalls using a supervised secure channel. By creating a barrier between networks, jump servers create an added layer of security against outsiders wanting to maliciously access sensitive company data
troy9876Option: D
Sep 18, 2022TLS should be the answer.
adamwella
Sep 20, 2022Not sure how TLS fixes this problem. However, if you patch this vulnerability then the problem is solved.
AaronS1990
Jun 18, 2023No it shouldn't be. Also compTIA recommends TLS 1.3 and above
jt2ouxOption: A
Sep 4, 2023Was going to go with host-based firewall until I looked up the definition of system patch. That sways my answer towards A. Patch the system. Patches are intended to repair vulnerabilities or flaws identified after the release of an application or software, upgrade and optimize the system for better efficiency and, most important, mitigate any potential security vulnerabilities.
23169fdOption: A
Jul 13, 2024Apply security patches: Ensure that the web application and any underlying frameworks or software are updated to fix known vulnerabilities.