nerdexam
EC-Council

312-50V10 · Question #261

Which of the following scanning tools is specifically designed to find potential exploits in Microsoft Windows products?

The correct answer is D. Microsoft Baseline Security Analyzer. The Microsoft Baseline Security Analyzer (MBSA) is the Microsoft-authored tool specifically designed to detect missing patches and security misconfigurations in Windows products.

Vulnerability Analysis

Question

Which of the following scanning tools is specifically designed to find potential exploits in Microsoft Windows products?

Options

  • AMicrosoft Security Baseline Analyzer
  • BRetina
  • CCore Impact
  • DMicrosoft Baseline Security Analyzer

How the community answered

(22 responses)
  • A
    5% (1)
  • B
    5% (1)
  • D
    91% (20)

Why each option

The Microsoft Baseline Security Analyzer (MBSA) is the Microsoft-authored tool specifically designed to detect missing patches and security misconfigurations in Windows products.

AMicrosoft Security Baseline Analyzer

'Microsoft Security Baseline Analyzer' is not the correct name of any real Microsoft product; the actual tool reverses those middle words to form 'Microsoft Baseline Security Analyzer,' making this a naming distractor.

BRetina

Retina is a commercial vulnerability scanner from BeyondTrust that covers multiple platforms and operating systems, so it is not specifically designed for Windows.

CCore Impact

Core Impact is a commercial penetration testing and exploit delivery framework, not a Windows-specific patch assessment or misconfiguration scanner.

DMicrosoft Baseline Security AnalyzerCorrect

Microsoft Baseline Security Analyzer (MBSA) is a free tool developed by Microsoft that scans Windows operating systems and Microsoft applications for missing security updates and common security misconfigurations using the Microsoft security bulletin database. Because it is built and maintained by Microsoft, it is purpose-built for assessing Windows-specific security posture. Option A is a distractor that uses the same words in the wrong order, referencing a tool that does not exist.

Concept tested: Microsoft Baseline Security Analyzer for Windows vulnerability assessment

Source: https://learn.microsoft.com/en-us/previous-versions/tn-archive/cc184924(v=technet.10)

Topics

#vulnerability scanner#MBSA#Windows security#scanning tools

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice