Brainscape's Knowledge GenomeTM


Top Flashcards (Certified)
All Flashcards

D430 Information Security > Application Security > Flashcards

Application Security Flashcards

1
Q

What is a buffer overflow?

A

A vulnerability that occurs when a program writes more data into a buffer than it can hold, potentially overwriting adjacent memory.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is a race condition in software security?

A

A flaw that occurs when multiple processes or threads access shared resources in an unintended sequence.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is an input validation attack?

A

An attack that occurs when improperly validated user input is processed by an application, allowing unexpected behavior.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are two common input validation attacks?

A

Format string attacks – Exploiting vulnerabilities in functions like printf() to leak memory or execute code.
SQL injection – Malicious input used to manipulate database queries.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is an authentication attack?

A

An attempt to gain access to a system without proper credentials.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is an authorization attack?

A

An attempt to gain access to unauthorized resources.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is a cryptographic attack?

A

An attack that exploits weaknesses in encryption algorithms or implementations.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are client-side attacks?

A

Attacks that exploit weaknesses in client-side software, such as web browsers or plugins.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is Cross-Site Scripting (XSS)?

A

A client-side attack where malicious scripts are injected into a website, executed in the victim’s browser.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What are server-side attacks?

A

Attacks that exploit vulnerabilities in web servers, applications, or databases.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are five common web server vulnerabilities?

A

Lack of input validation – Leads to SQL injection or XSS.
Weak permissions – Allows unauthorized access.
Extraneous files – Leaving debug files or backup data accessible.
Protocol issues – Misconfigurations in HTTP/HTTPS security settings.
Unauthenticated access – Publicly exposed admin panels.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is a sniffer in application security?

A

A tool that monitors network traffic to detect potential security threats.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What are web application analysis tools, and why are they important?

A

Tools that scan for vulnerabilities in web applications before attackers exploit them.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is a fuzzer, and how does it improve security?

A

A tool that bombards an application with unexpected inputs to find security flaws.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

D430 Information Security (13 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions