Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

CompTIA CS0-003 Exam - Topic 2 Question 54 Discussion

Actual exam question for CompTIA's CS0-003 exam
Question #: 54
Topic #: 2
[All CS0-003 Questions]

During a training exercise, a security analyst must determine the vulnerabilities to prioritize. The analyst reviews the following vulnerability scan output:

Which of the following issues should the analyst address first?

Show Suggested Answer Hide Answer
Suggested Answer: A

Allowing anonymous read access to /etc/passwd is a critical vulnerability because it can expose user account details, aiding attackers in password cracking and privilege escalation.

Option B (Anonymous FTP access) is a risk, but /etc/passwd exposure is more critical as it directly affects user authentication.

Option C (Defender updates disabled) is important, but it does not present an immediate attack vector like credential exposure.

Option D (less escape exploit) is significant, but it requires user interaction, making it less immediate than a global credential leak.

Thus, A is the correct answer, as it represents an immediate, high-impact security risk.


by Pearlene at Mar 05, 2026, 05:33 PM

Limited Time Offer

25%

Off

Get Premium CS0-003 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Renea
3 days ago
C) is concerning, but it’s not as urgent as A).
upvoted 0 times
...
Rodolfo
8 days ago
I think B) is worse, FTP access is a big deal.
upvoted 0 times
...
Victor
13 days ago
A) is a huge risk, gotta fix that first!
upvoted 0 times
...
Glenn
18 days ago
The escape exploit via the less command sounds dangerous, but I wonder if it’s as critical as the anonymous access issues. I need to double-check how those exploits work.
upvoted 0 times
...
Toshia
23 days ago
I practiced a similar question where we had to choose between access issues and software updates. I think keeping Microsoft Defender updated is crucial, but it might not be the immediate threat.
upvoted 0 times
...
Laine
29 days ago
I'm not entirely sure, but I feel like the FTP access issue might be a bigger risk since it could expose multiple files, right?
upvoted 0 times
...
Brice
1 month ago
I remember we discussed prioritizing vulnerabilities based on potential impact. I think allowing anonymous read access to /etc/passwd could be really serious.
upvoted 0 times
...

Save Cancel