CompTIA Security+ (SY0-501) — Question 695

Fuzzing is used to reveal which of the following vulnerabilities in web applications?

Answer options

• A. Weak cipher suites
• B. Improper input handling
• C. DLL injection
• D. Certificate signing flaws

Correct answer: B

Explanation

Fuzzing is a technique that tests the robustness of software by inputting random data to identify improper input handling, which can lead to security vulnerabilities. The other options, such as weak cipher suites, DLL injection, and certificate signing flaws, are not specifically targeted by fuzzing, as they relate to different aspects of security or code execution.