CompTIA Security+ (SY0-501) — Question 463

Several workstations on a network are found to be on OS versions that are vulnerable to a specific attack.
Which of the following is considered to be a corrective action to combat this vulnerability?

Answer options

• A. Install an antivirus definition patch
• B. Educate the workstation users
• C. Leverage server isolation
• D. Install a vendor-supplied patch
• E. Install an intrusion detection system

Correct answer: D

Explanation

Installing a vendor-supplied patch is the correct action, as it directly addresses and fixes the vulnerabilities in the OS. The other options, while they may improve security, do not specifically resolve the issue of the vulnerable OS versions.