Juniper
JN0-632 · Question #111
JN0-632 Question #111: Real Exam Question with Answer & Explanation
Sign in or unlock JN0-632 to reveal the answer and full explanation for question #111. The question stem and answer options stay visible for context.
Question
A security alert has been issued for an application running on your network that exploits a buffer overflow to compromise the application. The security alert specifies that initial client-to-server communication will contain the string "~\hack-app", followed by the string "&&-phase-2//" or the string "\bad\7string". Which type of IPS custom signature is required to block the traffic?
Options
- Aa signature attack object for each of the specified strings
- Ba compound attack object
- Ca protocol anomaly attack object
- Da regular expression matching the identified strings
Unlock JN0-632 to see the answer
You've previewed enough free JN0-632 questions. Unlock JN0-632 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.