Chapter 5 Flashcards
Which attack intercepts communications
between a web browser and the
underlying computer?
a. Man-in-the-middle (MITM)
b. Man-in-the-browser (MITB)
c. Replay
d. ARP poisoning
b. Man-in-the-browser (MITB)
Olivia was asked to protect the system
from a DNS poisoning attack. What are
the locations she would need to protect?
a. Web server buffer and host DNS server
b. Reply referrer and domain buffer
c. Web browser and browser add-on
d. Host table and external DNS server
d. Host table and external DNS server
Newton is concerned that attackers could be exploiting a vulnerability in software to gain access to resources that the user normally would be restricted from accessing. What type of attack is he worried about?
A. Privilege escalation
B. Session replay
C. Scaling exploit
D. Amplification
A. Privilege escalation
Which of the following adds new functionality to the web browser so that users can play music, view videos, or display special graphical images within the browser?
C. Plug-ins
An attacker who manipulates the maximum size of an integer type would be performing what kind of attack?
A. integer overflow
B. buffer overflow
C. number overflow
D. heap overflow
A. integer overflow
What kind of attack is performed by an attacker who takes advantage of the inadvertent and unauthorized access built through three succeeding systems that all trust one another?
A. privilege escalation
B. cross-site attack
C. horizontal access attack
D. transverse attack
A. privilege escalation
Which statement is correct regarding why traditional network security devices cannot be used to block web application attacks?
A. The complex nature of TCP/IP allows for too many ping sweeps to be blocked.
B. Web application attacks use web browsers that cannot be controlled on a local computer.
C. Network security devices cannot prevent attacks from web resources.
D. Traditional network security devices ignore the content of HTTP traffic, which is the vehicle of web application attacks.
D. Traditional network security devices ignore the content of HTTP traffic, which is the vehicle of web application attacks.
What is the difference between a DoS and a DDoS attack?
A. DoS attacks are faster than DDoS attacks
B. DoS attacks use fewer computers than DDoS attacks
C. DoS attacks do not use DNS servers as DDoS attacks do
D. DoS attacks user more memory than a DDoS attack
B. DoS attacks use fewer computers than DDoS attacks
John was explaining about an attack that accepts user input without validating it and uses that input in a response. What type of attack was he describing?
B. XSS (cross-site scriping) enables attackers to inject client-side scripts into web pages viewed by others
Which attack uses the user’s web browser settings to impersonate that user?
XSRF (cross-site request forgery) unauthorized commands are submitted from a user the application trusts
What is the basis of an SQL injection attack?
A. to expose SQL code so that it can be examined
B. to have the SQL server attack client web browsers
C. to insert SQL statements through unfiltered user input
D. to link SQL servers into a botnet
C. to insert SQL statements through unfiltered user input
Which action cannot be performed through a successful SQL injection attack?
A. discover the names of different fields in a table
B. reformat the web application server’s hard drive
C. display a list of customer telephone numbers
D. erase a database table
B. reformat the web application server’s hard drive
Attackers who register domain names that are similar to legitimate domain names are performing _____.
A. Address resolution
B. HTTP manipulation
C. HTML squatting
D. URL hijacking
D. URL hijacking
What type of attack involves manipulating third-party ad networks?
A. Session advertising
B. Malvertising
C. Clickjacking
D. Directory traversal
B. Malvertising (injects malcious code within digital ads)
Why are extensions, plug-ins, and add-ons considered to be security risks?
A. They are written in Java, which is a weak language.
B. They have introduced vulnerabilities in browsers.
C. They use bitcode.
D. They cannot be uninstalled.
B. They have introduced vulnerabilities in browsers.
