CompTIA CASP+ (CAS-003) — Question 63

A company wants to confirm sufficient executable space protection is in place for scenarios in which malware may be attempting buffer overflow attacks. Which of the following should the security engineer check?

Answer options

• A. NX/XN
• B. ASLR
• C. strcpy
• D. ECC

Correct answer: A

Explanation

The correct answer is A, NX/XN, as it directly relates to marking memory regions as non-executable, which prevents code execution from those areas, thus defending against buffer overflow attacks. While ASLR (B) helps in randomizing memory addresses to make it harder for attackers, it doesn't specifically protect the executable space. strcpy (C) is a function that can lead to buffer overflows if not used carefully, and ECC (D) is used for error-checking in memory rather than for executable space protection.