CompTIA SecurityX (CAS-005) — Question 234

A company created an external application for its customers. A security researcher now reports that the application has a serious LDAP injection vulnerability that could be leveraged to bypass authentication and authorization. Which of the following actions would best resolve the issue? (Choose two.)

Answer options

• A. Conduct input sanitization.
• B. Deploy a SIEM.
• C. Use containers.
• D. Patch the OS.
• E. Deploy a WAF.
• F. Deploy a reverse proxy.
• G. Deploy an IDS.

Correct answer: A, E

Explanation

Input sanitization (A) is crucial as it helps prevent malicious input from affecting the LDAP queries, thus mitigating the injection risk. Deploying a WAF (E) adds another layer of security by filtering and monitoring HTTP traffic to and from the application, which can also help block injection attempts. The other options do not directly address the LDAP injection vulnerability.