CompTIA Security+ (SY0-501) — Question 274

Which of the following solutions should an administrator use to reduce the risk from an unknown vulnerability in a third-party software application?

Answer options

• A. Sandboxing
• B. Encryption
• C. Code signing
• D. Fuzzing

Correct answer: A

Explanation

Sandboxing is the correct answer because it allows the application to run in a controlled environment, limiting its access to the system and reducing potential harm from vulnerabilities. Encryption protects data but does not address vulnerabilities in applications, while code signing verifies the source of the software without preventing exploitation. Fuzzing is a testing technique that helps identify vulnerabilities but does not provide a direct solution for managing risks in production environments.