GIAC
GCIH · Question #594
GCIH Question #594: Real Exam Question with Answer & Explanation
Sign in or unlock GCIH to reveal the answer and full explanation for question #594. The question stem and answer options stay visible for context.
Question
A new buffer overflow vulnerability in the Remote Procedure Call (RPC) mechanism for all versions of Windows has been announced, and exploit code has already been made available on the Internet. A fix is available. As the administrator of a Windows 2003 Server system, you want to prevent the exploit from compromising your system. Which of the following options are available to you?
Options
- ASet the noexec_user_stack and noexec_user_stack_log dword values to in the registry
- BInstall the system kernel module from openwall.com
- CTurn on Unknown Binary Execution Prevention (UBEP) for essential Windows services
- DInstall the latest OS and application patches from Microsoft
Unlock GCIH to see the answer
You've previewed enough free GCIH questions. Unlock GCIH for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.