nerdexam
ExamsCAS-002Questions#785
CompTIA

CAS-002 · Question #785

CAS-002 Question #785: Real Exam Question with Answer & Explanation

The correct answer is A: Aggressive patch management on the host and guest OSs.. Inter-VM attacks on a shared physical host exploit unpatched vulnerabilities in the hypervisor or guest OS, making aggressive patch management the most effective preventive control.

Question

Which of the following BEST constitutes the basis for protecting VMs from attacks from other VMs hosted on the same physical platform?

Options

  • AAggressive patch management on the host and guest OSs.
  • BHost based IDS sensors on all guest OSs.
  • CDifferent antivirus solutions between the host and guest OSs.
  • DUnique Network Interface Card (NIC) assignment per guest OS.

Explanation

Inter-VM attacks on a shared physical host exploit unpatched vulnerabilities in the hypervisor or guest OS, making aggressive patch management the most effective preventive control.

Common mistakes.

  • B. Host-based IDS sensors on guest OSs can detect intrusion attempts after exploitation begins but do not prevent the underlying hypervisor vulnerabilities that enable VM-to-VM attacks.
  • C. Using different antivirus products between host and guest does not address the hypervisor-level or OS-level vulnerabilities that are exploited in VM escape and inter-VM attack scenarios.
  • D. Unique NIC assignment per guest OS improves network traffic isolation but does not protect against VM escape attacks that target the hypervisor layer rather than the network path.

Concept tested. VM isolation via hypervisor and guest OS patch management

Reference. https://learn.microsoft.com/en-us/azure/security/fundamentals/virtual-machines-overview

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-002 Practice