PT0-003
Vulnerability Discovery and Analysis
hard
Question 8 of 17

A penetration tester reviews a Nessus scan report and notices that a Windows server is flagged for MS17-010 (EternalBlue). The server is running Windows Server 2016 with all patches applied as of six months ago. What is the MOST likely explanation for this finding?

AThe patch was not applied correctly and the server is genuinely vulnerable
BThe scanner detected an outdated banner and the finding is likely a false positive
CThe server's firewall is blocking the vulnerability scan, causing a false negative
DNessus cannot accurately detect MS17-010

More Vulnerability Discovery and Analysis Questions

17 questions

Full CompTIA PenTest+ Practice Test

All topics covered

All CompTIA PenTest+ Questions

Browse by topic

Related Questions

Which vulnerability scanning tool is commonly associated with credentialed (authenticated) scanning ...

easy

A penetration tester performs an unauthenticated vulnerability scan and receives a result flagging a...

medium

A penetration tester is performing DAST (Dynamic Application Security Testing) on a web application....

medium

A penetration tester is using Nikto to scan a web server. What category of vulnerabilities is Nikto ...

medium

A penetration tester performs a credentialed Nessus scan of a Linux server and receives a critical f...

hard
View all Vulnerability Discovery and Analysis questions

Educational Content — CertQnA practice questions are written against official exam objectives, covering the same domains tested on the real exam. All content is original and independent — not actual exam questions, not affiliated with any certification vendor. Learn more about our content policy

Discussion

Be the first to share your understanding of this concept

⚠️ Discussion is for concept clarification only. Do not share or request actual exam questions or answers.

Sign in to join the discussion

Sign InCreate free account