Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
MuleSoft
All Vendors
  2. Home
  3. Exams
  4. CompTIA
  5. CAS-005

Free CompTIA CAS-005 Exam Braindumps (page: 6)

92.2% Passing Rate DOWNLOAD PDF EXAM
343 Questions & Answers
Page 6 of 82

A security engineer receives reports through the organization's bug bounty program about remote code execution in a specific component in a custom application. Management wants to properly secure the component and proactively avoid similar issues.
Which of the following is the best approach to uncover additional vulnerable paths in the application?

  1. Leverage an exploitation framework to uncover vulnerabilities.
  2. Use fuzz testing to uncover potential vulnerabilities in the application.
  3. Utilize a software composition analysis tool to report known vulnerabilities.
  4. Reverse engineer the application to look for vulnerable code paths.
  5. Analyze the use of an HTTP intercepting proxy to dynamically uncover issues.

Answer(s): B

Explanation:

Fuzz testing is a technique used to identify vulnerabilities by inputting a large volume of random, unexpected, or malformed data into the application. It helps uncover vulnerabilities like buffer overflows, input validation issues, and other security flaws that may not be immediately apparent. By systematically testing different inputs and paths in the application, fuzz testing can identify previously undiscovered vulnerabilities and help secure the component against potential exploits.



A security technician is investigating a system that tracks inventory via a batch update each night. The technician is concerned that the system poses a risk to the business, as errors are occasionally generated and reported inventory appears incorrect. The following output log is provided:


The technician reviews the output of the batch job and discovers that the inventory was never less than zero, and the final inventory was 100 rather than 60.
Which of the following should the technician do to resolve this issue?

  1. Ensure that the application is using memory-safe functions to prevent integer overflows.
  2. Recommend thread-safe processes in the code to eliminate race conditions.
  3. Require the developers to include exception handlers to accommodate out-of-bounds results.
  4. Move the batch processing from client side to server side to remove client processing inconsistencies.

Answer(s): C

Explanation:

The issue described in the log shows that, at one point, the inventory goes below zero (transaction 5 where the operation is -40, resulting in a negative balance of -10). However, despite this, the final inventory is reported as 100 rather than 60, suggesting that the system is not correctly handling situations where the inventory goes below zero, or there is an error in reporting or updating the total.
By including exception handlers in the code to manage out-of-bounds results, the developers can ensure that the system correctly handles situations where negative inventory would otherwise occur or other logical errors take place. Exception handling can ensure that invalid operations are either prevented or properly logged and managed, which resolves the problem of inconsistent inventory reporting.



A programmer is reviewing the following proprietary piece of code that was identified as a vulnerability due to users being authenticated when they provide incorrect credentials:


Which of the following should the programmer implement to remediate the code vulnerability?

  1. Salted hashing via the proprietary SHASH function
  2. Input validation in the first two lines of code
  3. Atomic execution of subroutines
  4. TOCTOU remediation in SET USERACL
  5. Database connection over encrypted channels

Answer(s): B

Explanation:

The code vulnerability stems from improper handling of user input in the authentication process. In the first two lines, the code retrieves the USERID and PASS inputs, but there is no validation or sanitation of these inputs before they are processed.
By implementing input validation in these initial lines of code, the programmer can ensure that only properly formatted and expected data is passed into the authentication logic. This prevents malicious input, such as SQL injection or other forms of manipulation, which could allow incorrect credentials to be accepted and cause authentication issues. Input validation ensures that the inputs meet specific criteria (e.g., expected length, character set), which mitigates the risk of such vulnerabilities.



A senior cybersecurity engineer is solving a digital certificate issue in which the CA denied certificate issuance due to failed subject identity validation. At which of the following steps within the PKI enrollment process would the denial have occurred?

  1. RA
  2. OCSP
  3. CA
  4. IdP

Answer(s): A

Explanation:

The Registration Authority (RA) is responsible for validating the identity of the certificate requestor before the Certificate Authority (CA) issues the certificate. If the identity validation fails during this step, the RA will deny the request, leading to a failure in certificate issuance. The CA will only issue the certificate after the RA has successfully validated the requestor's identity. Therefore, the denial of certificate issuance due to failed subject identity validation would have occurred at the RA stage.






Post your Comments and Discuss CompTIA CAS-005 exam prep with other Community members:

CAS-005 Exam Discussions & Posts