Certified Information Systems Security Professional (CISSP) — Question 453

What is the benefit of an operating system (OS) feature that is designed to prevent an application from executing code from a non-executable memory region?

Answer options

• A. Identifies which security patches still need to be installed on the system
• B. Reduces the risk of polymorphic viruses from encrypting their payload
• C. Stops memory resident viruses from propagating their payload
• D. Helps prevent certain exploits that store code in buffers

Correct answer: D

Explanation

The correct answer is D because preventing execution from non-executable memory regions helps block exploits that inject code into buffers. Options A, B, and C do not directly relate to the specific function of preventing code execution from non-executable memory, making them incorrect in this context.