CompTIA CASP+ (CAS-004) — Question 29

A company created an external application for its customers. A security researcher now reports that the application has a serious LDAP injection vulnerability that could be leveraged to bypass authentication and authorization.
Which of the following actions would BEST resolve the issue? (Choose two.)

Answer options

• A. Conduct input sanitization.
• B. Deploy a SIEM.
• C. Use containers.
• D. Patch the OS
• E. Deploy a WAF.
• F. Deploy a reverse proxy
• G. Deploy an IDS.

Correct answer: A, E

Explanation

The best solutions to mitigate LDAP injection vulnerabilities are input sanitization (A) to ensure that only valid data is processed and deploying a Web Application Firewall (E) to filter and monitor HTTP traffic for malicious activities. The other options, such as deploying a SIEM, containers, or patching the OS, do not specifically address the LDAP injection issue.