adplus-dvertising
frame-decoration

Question

What is the general idea behind using reversing for auditing a program when source code is unavailable?

a.

To reverse several code fragments from a program and evaluate the code for security vulnerabilities and safe programming practices

b.

To write new code to replace the existing code in a program

c.

To create a new program from scratch

d.

To use open source code instead of third-party software libraries

Posted under Reverse Engineering

Answer: (a).To reverse several code fragments from a program and evaluate the code for security vulnerabilities and safe programming practices Explanation:The general idea behind using reversing for auditing a program when source code is unavailable is to reverse several code fragments from a program and evaluate the code for security vulnerabilities and safe programming practices.

Engage with the Community - Add Your Comment

Confused About the Answer? Ask for Details Here.

Know the Explanation? Add it Here.

Q. What is the general idea behind using reversing for auditing a program when source code is unavailable?

Similar Questions

Discover Related MCQs

Q. What is the ultimate goal of security in computer systems?

Q. How does reversing relate to maintaining control of the flow of information on a system?

Q. What is the first level in which installing a software product entrusts a computer and its data to that program?

Q. How can a simple bug in a software product put a system in jeopardy?

Q. What is a vulnerability?

Q. How do vulnerabilities typically start?

Q. What is the basic idea behind exploiting a vulnerability?

Q. What is the easiest objective when exploiting a vulnerability?

Q. What level of sophistication is required to take control of a program?

Q. How can vulnerabilities put entire networks at risk?

Q. What are stack overflows?

Q. Which programming languages are particularly susceptible to stack overflow vulnerabilities?

Q. How are stack overflow vulnerabilities created?

Q. Why do stack variables always have a fixed size?

Q. What can happen if a program neglects to verify that received data fits into the stack buffer before copying it?

Q. What are stack overflows and why are they popular?

Q. How can a simple stack overflow vulnerability be created?

Q. What can happen when a buffer of an unknown size is copied over into a limited-sized stack buffer?

Q. What can be overwritten if the copied buffer is long enough in a function that defines the following local variables: int counter; char string[8]; float number;?

Q. What happens if the copied buffer overwrites the function’s return address?