CompTIA Security+ (SY0-501) — Question 346

Confidential corporate data was recently stolen by an attacker who exploited data transport protections.
Which of the following vulnerabilities is the MOST likely cause of this data breach?

Answer options

• A. Resource exhaustion on VPN concentrators
• B. Weak SSL cipher strength
• C. Improper input handling on FTP site
• D. Race condition on packet inspection firewall

Correct answer: C

Explanation

The most likely cause of the data breach is C, as improper input handling on an FTP site can allow attackers to manipulate data transfer processes, leading to unauthorized access. Options A and D relate to resource and timing issues that do not directly facilitate data theft, while B concerns encryption strength, which is less likely to be the immediate cause of the breach in this context.