ExamTopics Logo
Mail Us[email protected]
Menu
Splunk Discussions
exam questions

Exam SPLK-2001 All Questions

View all questions & answers for the SPLK-2001 exam
Go to Exam

Exam SPLK-2001 topic 1 question 41 discussion

Actual exam question from Splunk's SPLK-2001
Question #: 41
Topic #: 1
[All SPLK-2001 Questions]

Consider the following Python code snippet used in a Splunk add-on: if not os.path.exists(full_path): self.doAction(full_path, header) else: f = open(full_path) oldORnew = f.readline
().split(`,`) f.close()
An attacker could create a denial of service by causing an error in either the open() or readline() commands. What type of vulnerability is this?

  • A. CWE-693: Protection Mechanism Failure
  • B. CWE-562: Return of Stack Variable Address
  • C. CWE-404: Improper Resource Shutdown or Release
  • D. CWE-636: Not Failing Securely ('Failing Open')
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
Reference:
https://dev.splunk.com/enterprise/docs/developapps/testvalidate/securitybestpractices/
by nosavotor at Aug. 22, 2023, 10:48 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
qtygbapjpesdayazko
1 year, 8 months ago
Selected Answer: C
C. CWE-404: Improper Resource Shutdown or Release
upvoted 1 times
...
Ignotus
1 year, 9 months ago
use the reference link; it's there.
upvoted 2 times
...
nosavotor
1 year, 9 months ago
Friends could you please confirm this answer
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel