Question: The vulnerability found in Nessus scan is Microsoft Windows - DTC Remote code execution (MS05-051) and propose and implement a mitigation strategy to remediate the

The vulnerability found in Nessus scan is Microsoft Windows - DTC Remote code execution (MS05-051) and propose and implement a mitigation strategy to remediate the corresponding vulnerability. For example, a vulnerability that might be a threat is the use of telnet protocol to connect to a remote server over the Internet. The solution for this threat is to prevent/block incoming/outgoing telnet traffic, by writing some IPTables rules, as follows:iptables -A INPUT -p tcp --dport telnet -j REJECT iptables -A OUTPUT -p tcp --dport telnet -j REJECT

Note: it is important when you choose your mitigation techniques to make sure that they are feasible.

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Q:

\fTimeline 2016 Maersk shipping company's senior system administrators warn company that its network of 80,000+ computers was vulnerable to attack ' Windows 2000 servers and Windows XP computers...

Q:

CIS CONTROL #1 Inventory of Authorized and Unauthorized Devices: Actively manage (inventory, track, and correct) all hardware devices on the network so that only authorized devices are given access,...

Q:

He want us to identify the 18 vulnerabilities. template is attach. Case No. 2000-02: Recreation, Inc. 1 AICPA Case Development Program RECREATION, INC. AN INFORMATION TECHNOLOGY RISK ASSESSMENT CASE...

Q:

A new version of the operating system is being planned for installation into your departments production environment. What sort of testing would you recommend is done before your department goes live...

Q:

Objectives This research is a security assessment of a small group of systems. In this assessment, students will apply security tools and resources learned in labs to a set of unknown systems. They...

Q:

Solution : the Virtual machine OWASP BWA can be downloaded from: https://sourceforge.net/projects/owaspbwa/ The file (~2 GB file) is is compressed zip folder in .7z format so you might need a tool...

Q:

You are tasked to perform a vulnerability assessment on one of the web servers. You will be able to understand how vulnerability scanners like Nessus and OpenVAS work. The scope for this assessment...

Q:

SMB LOGIN CHECK, 1 . In each case, what vulnerability has been exploited? 2 . In each case, how have you found the vulnerability? VNC AUTHENTICATION, 3 . In each case, what vulnerability has been...

Q:

Can you help me to draw the WBS diagram for this content - 6 Environment Setup 6.1 Install and configure the operating system for each IT asset 6.1.1 Domain Controller 6.1.2 File Server 6.1.3 CRM...

Q:

Some vulnerability scanners, like Nessus and Nexpose, are expensive to use. For example, Nessus charges over $2,100 a year to use it. Is purchasing an easy-to-use, frequently updated vulnerability...

Q:

Two stations A and B of a road are 50 ft apart. Moreover, the fill parts of the two cross sections are on the opposite sides (left and right) of the two cross sections, while the cut parts are on the...

Q:

East Company leased a new machine from North Company on May 1, 2014, under a lease with the following information: Lease term .................. 10 years Annual rental payable at beginning of each...

Q:

Which of the following statement ( s ) is most likely to be correct? Question 1 5 Answer a . All of the above b . The net payoff to creditors in formal bankruptcy may be low in present value terms...

Q:

Which items appear on the bank side of a bank reconciliation? Answer: A. Note receivable collected by bank B. Outstanding checks C. NSF checks D. Bank charges 16) What statement regarding drag and...

Q:

Understand the role of internal marketing and communications.

Q:

Know how to motivate and energize service employees so that they will deliver service excellence and productivity.

Q:

Know how to integrate teams across departments and functional areas.