Certified Information Security Manager (CISM) — Question 506

Which of the following BEST describes a buffer overflow?

Answer options

• A. A type of covert channel that captures data
• B. A function is carried out with more data than the function can handle
• C. Malicious code designed to interfere with normal operations
• D. A program contains a hidden and unintended function that presents a security risk

Correct answer: B

Explanation

The correct answer, B, accurately defines a buffer overflow as a situation where a function receives more data than it can manage, leading to potential security vulnerabilities. The other options describe different security concepts, such as covert channels, malicious code, and hidden functions, but do not capture the specific nature of a buffer overflow.