Free Access CuramSoftware.CS0-002.v2024-02-05.q218 Practice Test (Page 17)

Question 76

A vulnerability scan returned the following results for a web server that hosts multiple wiki sites:
Apache-HTTPD-cve-2014-023: Apache HTTPD: mod_cgid denial of service CVE-2014- Due to a flaw found in mog_cgid, a server using mod_cgid to host CGI scripts could be vulnerable to a DoS attack caused by a remote attacker who is exploiting a weakness in non-standard input, causing processes to hang indefinitely.

The security analyst has confirmed the server hosts standard CGI scripts for the wiki sites, does not have mod_cgid installed, is running Apache 2.2.22, and is not behind a WAF. The server is located in the DMZ, and the purpose of the server is to allow customers to add entries into a publicly accessible database.
Which of the following would be the MOST efficient way to address this finding?

A.Disable the HTTP service and use only HTTPS to access the server.

B.Upgrade to the newest version of Apache.

C.Place the server behind a WAF to prevent DoS attacks from occurring.

D.Document the finding as a false positive.

Question 77

Which of the following are the most likely reasons to include reporting processes when updating an incident response plan after a breach? (Select two).

A.To use the SLA to determine when to deliver the report

B.To meet regulatory requirements for timely reporting

C.To limit reputation damage caused by the breach

D.To remediate vulnerabilities that led to the breach

E.To isolate potential insider threats

F.To provide secure network design changes

Question 78

An analyst is reviewing the following code output of a vulnerability scan:

Which of the following types of vulnerabilities does this MOST likely represent?

A.An HTTP response split vulnerability

B.A credential bypass vulnerability

C.A insecure direct object reference vulnerability

D.A XSS vulnerability

Question 79

An organization is experiencing issues with emails that are being sent to external recipients Incoming emails to the organization are working fine. A security analyst receives the following screenshot ot email error from the help desk.

The analyst the checks the email server and sees many of the following messages in the logs.
Error 550 - Message rejected
Which of the following is MOST likely the issue?

A.The DKIM private key has expired

B.Port 25 is not open.

C.SPF is failing.

D.The DMARC queue is full

Question 80

A user receives a potentially malicious email that contains spelling errors and a PDF document. A security analyst reviews the email and decides to download the attachment to a Linux sandbox for review.
Which of the following commands would MOST likely indicate if the email is malicious?

A.sha256sum ~/Desktop/file.pdf

B.file ~/Desktop/file.pdf

C.cat < ~/Desktop/file.pdf | grep -i .exe

D.strings ~/Desktop/file.pdf | grep "<script"

Other Version: 2915CompTIA.CS0-002.v2025-03-13.q112; 3831CompTIA.CS0-002.v2024-10-25.q354; 1417CompTIA.CS0-002.v2024-09-17.q264; 2848CuramSoftware.CS0-002.v2023-02-13.q163; 5029CuramSoftware.CS0-002.v2022-08-26.q256; 120Curam-Software.Prepawaytest.CS0-002.v2022-02-03.by.kelly.205q.pdf; 15393CuramSoftware.CS0-002.v2022-01-17.q285

Latest Upload: 203PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 302Nokia.4A0-113.v2026-05-01.q69; 260EC-COUNCIL.312-49v11.v2026-04-30.q214; 230Microsoft.MB-820.v2026-04-30.q101; 212Salesforce.MC-202.v2026-04-30.q57; 207BICSI.INSTC_V8.v2026-04-29.q53; 336NMLS.MLO.v2026-04-28.q82; 244NCARB.Project-Management.v2026-04-28.q27; 465EMC.D-AV-DY-23.v2026-04-27.q184; 1122ServiceNow.CSA.v2026-04-27.q483

Question 76

Question 77

Question 78

Question 79

Question 80

Download PDF File