CompTIA PenTest+ (PT0-003) — Question 87

A penetration tester gains initial access to a target system by exploiting a recent RCE vulnerability. The patch for the vulnerability will be deployed at the end of the week. Which of the following utilities would allow the tester to reenter the system remotely after the patch has been deployed? (Choose two.)

Answer options

• A. schtasks.exe
• B. rundll.exe
• C. cmd.exe
• D. chgusr.exe
• E. sc.exe
• F. netsh.exe

Correct answer: A, E

Explanation

The correct answers, A (schtasks.exe) and E (sc.exe), allow the tester to schedule tasks and manage services, respectively, enabling a way to maintain access even after the patch. The other options, while useful for various tasks, do not provide the same capability to ensure remote reentry post-patch.