Question: Question 1 2 A software for a networking device is written using C programming language. There is a requirement in the software to get input

Question 12
A software for a networking device is written using C programming language. There is a requirement in the software to get input from the user. The programmers had used the gets() method for getting the input from the user and this lead to a very serious vulnerability known as buffer overflow.
Note: gets() is already listed as a vulnerable/bad coding practice in the CERT Coding Guidelines and has recommended developers to use new method fgets() instead of gets().
Which of the following Secure SDLC practices could have helped in preventing and/or detecting such issues? (Choose TWO most appropriate options)
Deprecate unsafe functions
Source code scanning using Static Application Security Testing (SAST) tools
User risk assessment
Establish a disposal/transition plan
Question 1 2 A software for a networking device

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Programming Questions!

Q:

A software for a networking device is written using C programming language. There is a requirement in the software to get input from the programmers had used the gets ( ) method for getting the input...

Q:

C++ Question Please help!!! Please include screen shots of code compiling using strings that are provided in question and use the given methods. All code must be written using C++ programming...

Q:

Please include screen shots of code compiling using strings that are provided in question. All code must be written using C++ programming language. You will construct a class that defines a parser....

Q:

Hi, I need help with the below assignment. It has to be done using C programming language only and attached are the assignment instructions. Find the game instructions attached below in image format...

Q:

This lab focuses on software development (using any programming language you'd like) that converts user input values to 1's and 2's comp notation. C programming language preferred This lab focuses on...

Q:

The program has to be written in C programming Language Question: We have a bunch of items categorized by the letters of english alphabet. We receive different amounts of them over time and we want...

Q:

Object oriented programming, each step in the pictures below should be followed precisely don't use anything extra other than what the question asks , code must be written in C++ programming language...

Q:

Develop a simple calculator using C++ programming language, and then perform post-fix and pre-fix increment and decrement on it. Also, draw the flowchart of your code and insert in on your webpage,...

Q:

Hi i want one page brief summary of this article i need this for my Operating System class priject and My project name is Android. Android also supports its native API which is on C or C++...

Q:

Goal: Understand the concept of Buffer Overflows, potential security impacts and ways to help prevent them Task: In teams of 2 students, complete as much of the lab as time allows. Both individuals...

Q:

Read the article "Bubble Kid puts Gene Therapy Back on Track" on https;/www.newscientist.com/article/mg22029413-200-bubble-kid-success-puts-gene-therapy-back-on-track. Then answer the following...

Q:

Design the energy metering unit to measure the energy consumed by 1000 W 230 V fan using Atmel microcontroller programmed using C language on proteus.

Q:

In which year are wages taxable for each of the following? An employee is paid weekly on Friday. For the period ended December 1 7 , 2 0 2 1 he is paidThursday, December 2 4 , 2 0 2 1 , but does not...

Q:

Let M and N be two events such that P (M)=0.41 and P(N)=0.48. Do not round your responses. (a) Determine P (MUN), given that M and N are independent. (b) Determine P (MUN), given that M and N are...