CompTIA Security+ (SY0-701) — Question 8

An organization’s internet-facing website was compromised when an attacker exploited a buffer overflow. Which of the following should the organization deploy to best protect against similar attacks in the future?

Answer options

• A. NGFW
• B. WAF
• C. TLS
• D. SD-WAN

Correct answer: B

Explanation

The correct answer is B, WAF (Web Application Firewall), which is specifically designed to protect web applications from vulnerabilities like buffer overflows. The other options, while useful in their own contexts, do not provide the same level of protection for web application layer threats as a WAF does.