Question

In his role as the SOC operator, Frank regularly scans a variety of servers in his organization. After two months of reporting multiple vulnerabilities on a Windows file server, Frank recently escalated

asked Oct 25, 2024 36.6k views

In his role as the SOC operator, Frank regularly scans a variety of servers in his organization. After two months of reporting multiple vulnerabilities on a Windows file server, Frank recently escalated the issue to the server administrator's manager. At the next weekly scan window, Frank noticed that all of the vulnerabilities were no longer active; however, ports 137, 139, and 445 were still showing as open. What most likely happened?

A. The server administrator blocked the scanner with a firewall.
B. The server was patched.
C. The vulnerability plug-ins were updated and no longer report false positives.
D. The system was offline.

Cooow asked

by Cooow

7.4k points

1 Answer

← Prev Question Next Question →

Ask a Question

Prashan · Answer 1 · 2024-10-29T17:29:10+0000

Final answer:

The most likely explanation for the open ports on the Windows file server after the vulnerabilities were fixed is that the server administrator blocked the scanner with a firewall.

Step-by-step explanation:

The most likely explanation for the open ports 137, 139, and 445 on the Windows file server after the vulnerabilities were fixed is that the server administrator blocked the scanner with a firewall. By blocking the scanner, the server administrator prevents further scanning and reporting of vulnerabilities, but this does not close the open ports. Port blocking is a common security measure to protect the server from potential threats.

0 Comments

Please log in or register to add a comment.

Please log in or register to answer this question.

1 Answer

Final answer:

Step-by-step explanation:

0 Comments

Please log in or register to add a comment.

Related questions

Other Questions