Online Access Free CompTIA.CAS-003.v2021-10-13.q221 Practice Test (Page 26)

CAS-003 Exam Question 121

While the code is still in the development environment, a security architect is testing the code stored in the code repository to ensure the top ten OWASP secure coding practices are being followed. Which of the following code analyzers will produce the desired results?

A.Peer review

B.Fuzzer

C.Static

D.Dynamic

CAS-003 Exam Question 122

A security manager recently categorized an information system. During the categorization effort, the manager determined the loss of integrity of a specific information type would impact business significantly. Based on this, the security manager recommends the implementation of several solutions. Which of the following, when combined, would BEST mitigate this risk? (Select TWO.)

A.Whitelisting

B.Validation

C.Access control

D.Signing

E.Boot attestation

CAS-003 Exam Question 123

An application present on the majority of an organization's 1,000 systems is vulnerable to a buffer overflow attack. Which of the following is the MOST comprehensive way to resolve the issue?

A.Deploy custom HIPS signatures to detect and block the attacks.

B.Validate and deploy the appropriate patch.

C.Run the application in terminal services to reduce the threat landscape.

D.Deploy custom NIPS signatures to detect and block the attacks.

Correct Answer: B

If an application has a known issue (such as susceptibility to buffer overflow attacks) and a patch is released to resolve the specific issue, then the best solution is always to deploy the patch.
A buffer overflow occurs when a program or process tries to store more data in a buffer (temporary data storage area) than it was intended to hold. Since buffers are created to contain a finite amount of data, the extra information - which has to go somewhere - can overflow into adjacent buffers, corrupting or overwriting the valid data held in them. Although it may occur accidentally through programming error, buffer overflow is an increasingly common type of security attack on data integrity. In buffer overflow attacks, the extra data may contain codes designed to trigger specific actions, in effect sending new instructions to the attacked computer that could, for example, damage the user's files, change data, or disclose confidential information. Buffer overflow attacks are said to have arisen because the C programming language supplied the framework, and poor programming practices supplied the vulnerability.
Incorrect Answers:
A: This question is asking for the MOST comprehensive way to resolve the issue. A HIPS (Host Intrusion Prevention System) with custom signatures may offer some protection against an application that is vulnerable to buffer overflow attacks. However, an application that is NOT vulnerable to buffer overflow attacks (a patched application) is a better solution.
C: This question is asking for the MOST comprehensive way to resolve the issue. Running the application in terminal services may reduce the threat landscape. However, it doesn't resolve the issue. Patching the application to eliminate the threat is a better solution.
D: This question is asking for the MOST comprehensive way to resolve the issue. A NIPS (Network Intrusion Prevention System) with custom signatures may offer some protection against an application that is vulnerable to buffer overflow attacks. However, an application that is NOT vulnerable to buffer overflow attacks (a patched application) is a better solution.
References:
http://searchsecurity.techtarget.com/definition/buffer-overflow

CAS-003 Exam Question 124

A penetration tester is given an assignment lo gain physical access to a secure facility with perimeter cameras.
The secure facility does not accept visitors and entry is available only through a door protected by an RFID key and a guard stationed inside the door Which of the following would be BEST for the penetration tester to attempt?

A.Duplicate an employees RFID badge and use an IR camera to see when the guard leaves the post

B.Tailgate into the facility with an employee who has a valid RFID badge to enter

C.Look for an open window that can be used to gain unauthorized entry into the facility

D.Gam entry into the building by posing as a contractor who is performing routine building maintenance

CAS-003 Exam Question 125

The Chief Executive Officer (CEO) of a large prestigious enterprise has decided to reduce business costs by outsourcing to a third party company in another country. Functions to be outsourced include: business analysts, testing, software development and back office functions that deal with the processing of customer data. The Chief Risk Officer (CRO) is concerned about the outsourcing plans. Which of the following risks are MOST likely to occur if adequate controls are not implemented?

A.Geographical regulation issues, loss of intellectual property and interoperability agreement issues

B.Improper handling of client data, interoperability agreement issues and regulatory issues

C.Cultural differences, increased cost of doing business and divestiture issues

D.Improper handling of customer data, loss of intellectual property and reputation damage

Other Version: 2095CompTIA.CAS-003.v2022-04-30.q101; 61CompTIA.Itpassleader.CAS-003.v2021-08-06.by.gale.404q.pdf

Latest Upload: 128IIBA.ECBA.v2026-06-24.q96; 131Microsoft.AI-102.v2026-06-24.q184; 107Databricks.Databricks-Generative-AI-Engineer-Associate.v2026-06-24.q31; 117EMC.D-PDM-DY-23.v2026-06-24.q16; 178ECCouncil.312-50v13.v2026-06-24.q254; 129F5.F5CAB5.v2026-06-22.q29; 130Juniper.JN0-650.v2026-06-22.q31; 151Salesforce.Plat-Admn-201.v2026-06-22.q72; 164VMware.3V0-21.25.v2026-06-20.q29; 169Microsoft.AB-731.v2026-06-19.q23

CAS-003 Exam Question 121

CAS-003 Exam Question 122

CAS-003 Exam Question 123

CAS-003 Exam Question 124

CAS-003 Exam Question 125

Download PDF File