CompTIACompTIA
CAS-005 · Question #472
CAS-005 Question #472: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-005 to reveal the answer and full explanation for question #472. The question stem and answer options stay visible for context.
Submitted by weili_xi· Mar 6, 2026Security Engineering
Question
An incident response analyst finds the following content inside of a log file that was collected from a compromised server: %б%90/90/./..<XML?......nty.......2308%6%678...whoami..... su2032829%72%322///....../etc/passwd.... 2087031731%67%78%32... Which of the following is the best action to prevent future compromise?
Options
- ABlocking the processing of external files by forwarding them to another server for processing
- BImplementing an allow list for all text boxes throughout the web application
- CFiltering inserted characters for all user inputs and allowing only ASCII characters
- DImproving file-parsing capabilities to stop external entities from executing commands
Unlock CAS-005 to see the answer
You've previewed enough free CAS-005 questions. Unlock CAS-005 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.