Which of the following should the administrator do to verify if this is indeed a false positive?

seenagapeNovember 9, 2016

An assessment too reports that the company’s web server may be susceptible to remote buffer overflow.
The web server administrator insists that the finding is a false positive. Which of the following should the
administrator do to verify if this is indeed a false positive?

A.
Use a banner grabbing tool

B.
Run a vulnerability scan

C.
Enforce company policies

D.
Perform a penetration test

3 Comments on “Which of the following should the administrator do to verify if this is indeed a false positive?”

Black says:

March 1, 2017 at 2:57 pm

I’m tired of these false negative answers.

Like it or not, it’s D. Shoot me if I’m wrong.

https://www.netsparker.com/blog/web-security/false-positives-the-dirty-secret-of-the-web-security-scanning-industry/

1

0

Log in to Reply
Mike says:

April 4, 2018 at 9:48 am

I chose D too. But the answer says otherwise.

1

1

Log in to Reply
Will says:

May 1, 2018 at 4:22 am

I chose D also

1

0

Log in to Reply

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

CompTIA Exam Questions

Free CompTIA Study Guide

Which of the following should the administrator do to verify if this is indeed a false positive?

3 Comments on “Which of the following should the administrator do to verify if this is indeed a false positive?”

Leave a Reply Cancel reply