CISSP · Question #1451
CISSP Question #1451: Real Exam Question with Answer & Explanation
The correct answer is B: Address Space Layout Randomization (ASLR). The most efficient option used to prevent buffer overflow attacks is Address Space Layout Randomization (ASLR). A buffer overflow attack is a type of attack that exploits a vulnerability in the memory allocation of a program, by sending more data than the buffer can hold, and ove
Question
A security architect is developing an information system for a client. One of the requirements is to deliver a platform that mitigates against common vulnerabilities and attacks, What is the MOST efficient option used to prevent buffer overflow attacks?
Options
- AProcess isolation
- BAddress Space Layout Randomization (ASLR)
- CProcessor states
- DAccess control mechanisms
Explanation
The most efficient option used to prevent buffer overflow attacks is Address Space Layout Randomization (ASLR). A buffer overflow attack is a type of attack that exploits a vulnerability in the memory allocation of a program, by sending more data than the buffer can hold, and overwriting the adjacent memory locations, such as the return address or the function pointer. A buffer overflow attack can cause the program to crash, execute arbitrary code, or escalate privileges. ASLR is a security technique that randomizes the memory layout of a program, such as the base address, the stack, the heap, or the libraries, making it harder for the attacker to predict or locate the target memory locations. ASLR can prevent buffer overflow attacks by increasing the entropy and complexity of the memory space, and by reducing the chances of successful exploitation.
Topics
Community Discussion
No community discussion yet for this question.