A threat advisory alert was just emailed to the IT security staff. The alert references specific types of host operating systems that can allow an unauthorized person to access files on a system remotely. A fix was recently published, but it requires a recent endpoint protection engine to be installed prior to running the fix.
Which of the following MOST likely need to be configured to ensure the system are mitigated accordingly? (Select two.)
A. Antivirus
B. HIPS
C. Application whitelisting
D. Patch management
E. Group policy implementation
F. Firmware updates
How to PASS CAS-004 in First Attempt?FULL Printable PDF and Software. VALID exam to help you PASS. |
 |
B, E
“but it requires a recent endpoint protection engine to be installed prior to running the fix”
Endpoint protection will take care of HIPS because they do the same thing. It will also take care of antivirus since Endpoint protection does that same function. Group policy only provides computer and user settings and will not stop a vulnerability from gaining accessing to the system.
To mitigate this. you will need a firmware update to harden the OSand BIOS and patch management to ensure the update is applied accordingly.
D and E are a really good match for this one
Maybe BD, firmware has nothing to do with this vulnerability
it’s B, E
HIPS( a host based intrusion prevention system is a system or a programmed employed to protect critical computer systems
Group policy implementation only authorised people allow to specific computer systems