CompTIA CySA+ (CS0-003) — Question 137

During a security test, a security analyst found a critical application with a buffer overflow vulnerability. Which of the following would be best to mitigate the vulnerability at the application level?

Answer options

• A. Perform OS hardening.
• B. Implement input validation.
• C. Update third-party dependencies.
• D. Configure address space layout randomization.

Correct answer: B

Explanation

Implementing input validation is crucial in preventing buffer overflow vulnerabilities by ensuring that only properly formatted and expected data is processed by the application. Options A, C, and D focus on system-level or external factors rather than directly addressing the application-level issue caused by improper handling of input data.