CompTIA Security+ Certification Exam SY0-701 Practice Test 7

Question 1

Exploiting known vulnerability is a common threat vector for:

A)Legacy systems/apps
B) Unsupported systems/apps
C) Newly released systems/apps
D)Systems/apps with zero-day vulnerability

Answer 1

B) Unsupported systems/apps

Question 2

A solution that simplifies configuration of new wireless networks by allowing non-technical users to easily configure network security settings and add new devices to an existing network is called:

A) WPA
B) WPS
C) WEP
D) WAP

Answer 2

B) WPS

Question 3

Which of the wireless technologies listed below are considered potential threat vectors and should be avoided due to their known vulnerabilities? (Select all that apply)

A) WPS
B) WAP
C) WPA
D) WAF
E) WPA2
F) WEP

Answer 3

A) WPS
C) WPA
E) WPA2
F) WEP

Question 4

The term “Evil twin” refers to a rogue WAP set up for eavesdropping or stealing sensitive user data. Evil twin replaces the legitimate AP and by advertising its own presence with the same Service Set Identifier (SSID, a.k.a. network name) appears as a legitimate AP to connecting hosts.

A) True

B) False

Answer 4

A) True

Question 5

Which of the following answers refers to a threat vector characteristic only to wired networks?

A) ARP Spoofing
B) VLAN hopping
C) Cable tapping
D) Port sniffing
E) All of the above

Answer 5

C) Cable tapping

Question 6

Examples of threat vectors related to Bluetooth communication include: bluesmacking (a type of DoS attack that targets Bluetooth devices by overwhelming them with excessive traffic), bluejacking (the practice of sending unsolicited messages or data to a Bluetooth-enabled device), bluesnarfing (gaining unauthorized access to a Bluetooth device and data theft), and bluebugging (gaining remote control over a Bluetooth device).

A) True

B) False

Answer 6

A) True

Question 7

Which of the answers listed below refers to the most probable cause of an unauthorized access caused by the exploitation of a specific network entry point?

A) Outdated AV software
B) Browser cookies
C) Open service ports
D) Insufficient logging and monitoring

Answer 7

C) Open service ports

Question 8

The importance of changing default usernames and passwords can be illustrated by the example of certain network devices (such as routers), which are often shipped with default and well-known admin credentials that can be looked up on the web.

A) True

B) False

Answer 8

A) True

Question 9

Which of the following would be the best solution for a company that needs IT services but lacks any IT personnel?

A) MSA
B) MaaS
C) MSP
D) MSSP

Answer 9

C) MSP

Question 10

Which of the terms listed below refers to a third-party vendor offering IT security management services?

A) MSP
B) MaaS
C) MSA
D) MSSP

Answer 10

D) MSSP

Question 11

Which of the following answers refer to common threat vectors that apply to MSPs, vendors, and suppliers in the supply chain? (Select 2 answers)

A) Compliance violations
B) Brand reputation damage
C) Propagation of malware
D) Operational disruptions
E) Social engineering techniques

Answer 11

C) Propagation of malware

E) Social engineering techniques

Question 12

A social engineering technique whereby attackers under disguise of a legitimate request attempt to gain access to confidential information is commonly referred to as:

A) Phishing
B) Smishing
C) Pharming
D) Spoofing

Answer 12

A) Phishing

Question 13

Which social engineering attack relies on identity theft?

A) Pretexting
B) Spear phishing
C) Tailgating
D) Impersonation

Answer 13

Impersonation

Question 14

A BEC attack is an example of:

A) Smishing
B) Phishing
C) Vishing
D) Pharming

Answer 14

B) Phishing

Question 15

Which of the answers listed below refers to a social engineering technique where an attacker creates a false scenario or situation to deceive the victim into revealing sensitive information?

A) Impersonation
B) Credential harvesting
C) Pretexting
D) Watering hole attack

Answer 15

C) Pretexting

Question 16

Which of the following terms refers to a platform used for watering hole attacks?

A) Mail gateways
B) Websites
C) PBX systems
D) Web browsers

Answer 16

B) Websites

Question 17

The term “URL hijacking” (a.k.a. “Typosquatting”) refers to a deceptive practice involving the deliberate registration of domain names with misspellings or slight variations that closely resemble well-established and popular domain names. The primary goal of this strategy is to exploit the common typographical errors made by users while entering URLs into their web browser’s address bar. Beyond capturing inadvertent traffic, typosquatting may also be used for hosting phishing sites to trick users into divulging sensitive information, distributing malware through deceptive websites, generating ad revenue by redirecting mistyped traffic, or engaging in brand impersonation to harm the reputation of authentic brands or deceive users.

A) True

B) False

Answer 17

A) True

Question 18

Which type of application attack relies on introducing external code into the address space of a running program?

A) Buffer overflow
B) Memory injection
C) Replay attack
D) Pointer dereference

Answer 18

B) Memory injection

Question 19

A collection of precompiled functions designed to be used by more than one Microsoft Windows application simultaneously to save system resources is known as:

A) DLL
B) API
C) EXE
D) INI

Answer 19

A) DLL

Question 20

Which of the answers listed below refers to an application attack that relies on executing a library of code?

A) Memory leak
B) DLL injection
C) Pointer dereference
D Buffer overflow

Answer 20

B) DLL injection

Question 21

A type of exploit in which an application overwrites the contents of a memory area it should not have access to is called:

A) DLL injection
B) Buffer overflow
C) Memory leak
D) Privilege escalation

Answer 21

B) Buffer overflow

Question 22

A malfunction in a preprogrammed sequential access to a shared resource is described as:

A) Race condition
B) Concurrency error
C) Multithreading
D) Synchronization error

Answer 22

A) Race condition

Question 23

A type of vulnerability where the state of a resource is verified at one point in time but may change before the resource is actually used is referred to as:

A) TOC
B) TOC/TOU
C) TOU
D) TSIG

Answer 23

B) TOC/TOU

Question 24

A malicious application update is a type of malware that can be installed through a seemingly legitimate software update. The introduction of a malicious update into the application code can be enabled through various means, including:

A) Unsigned application code

B) Unencrypted update channel (HTTP vs HTTPS)

C)Fake update website

D) Unauthorized access to update server

E) Compromised software development process

F) All of the above

Answer 24

F) All of the above

Question 25

Which of the following answers does not refer to a common type of OS-based vulnerability?

A) Access control and permissions vulnerabilities (weak passwords, privilege escalation)

B) Vulnerabilities in installed applications, system utilities, and device drivers

C) Memory-related vulnerabilities (memory leaks, buffer overflows, race conditions)

D) Patch and update management vulnerabilities (security patch and update delays, malicious updates)

E) Vulnerabilities related to system/security misconfigurations

F) Network-related vulnerabilities (DoS attacks, remote code execution attacks)

G) All of the above answer choices are examples of OS-based vulnerabilities

Answer 25

G) All of the above answer choices are examples of OS-based vulnerabilities