SY0-501 Question #551: Real Exam Question with Answer & Explanation

Question

Several workstations on a network are found to be on OS versions that are vulnerable to a specific attack. Which of the following is considered to be a corrective action to combat this vulnerability?

Options

• AInstall an antivirus definition patch
• BEducate the workstation users
• CLeverage server isolation
• DInstall a vendor-supplied patch
• EInstall an intrusion detection system

Explanation

To address OS versions vulnerable to a specific attack, the most direct and effective corrective action is to apply vendor-supplied patches that fix the identified flaws.

Common mistakes.

• A. Installing an antivirus definition patch updates the antivirus software's ability to detect malware, but it does not fix underlying operating system vulnerabilities.
• B. Educating workstation users helps prevent them from contributing to security incidents or falling for social engineering, but it does not directly fix a technical vulnerability in the operating system itself.
• C. Leveraging server isolation helps segment network resources and protect servers, but it does not address or fix vulnerabilities present on workstation operating system versions.
• E. Installing an intrusion detection system (IDS) detects malicious activity or exploitation attempts, but it does not remove or fix the underlying OS vulnerability itself; it is a monitoring tool, not a corrective patch.

Concept tested. OS patching for vulnerability management

Reference. https://learn.microsoft.com/en-us/windows/security/threat-protection/windows-security-updates

No community discussion yet for this question.