Implementing privilege escalation and using buffer overflow exploits are examples of administrative controls used to secure computer systems.

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the CFE Coach Exam with detailed questions and explanations. Use comprehensive quizzes and flashcards to boost your confidence. Ensure success!

Multiple Choice

Implementing privilege escalation and using buffer overflow exploits are examples of administrative controls used to secure computer systems.

Explanation:
Privilege escalation and buffer overflow exploits are attacker techniques, not protective controls. Administrative controls are policy- and process-based measures that manage security—things like access control policies, how users are provisioned and terminated, separation of duties, security training, incident response planning, and audit trails. Since these examples describe methods an attacker uses to compromise a system, they don’t qualify as administrative controls. That said, strong administrative controls can help prevent or mitigate such attacks when paired with solid technical controls. Enforcing least privilege reduces the potential impact of escalation, while secure coding practices, input validation, and memory-safe languages lessen buffer overflow risks. Regular patching and vulnerability management address underlying flaws. But the actions themselves—exploiting privileges or overflowing memory—are not administrative controls.

Privilege escalation and buffer overflow exploits are attacker techniques, not protective controls. Administrative controls are policy- and process-based measures that manage security—things like access control policies, how users are provisioned and terminated, separation of duties, security training, incident response planning, and audit trails. Since these examples describe methods an attacker uses to compromise a system, they don’t qualify as administrative controls.

That said, strong administrative controls can help prevent or mitigate such attacks when paired with solid technical controls. Enforcing least privilege reduces the potential impact of escalation, while secure coding practices, input validation, and memory-safe languages lessen buffer overflow risks. Regular patching and vulnerability management address underlying flaws. But the actions themselves—exploiting privileges or overflowing memory—are not administrative controls.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy