Chapter 5

Question 1

Which attacks intercepts communication between a web browser and the underlying computer?

a. Man-in-the-middle (MITM)
b. Man-in-the-browser (MITB)
c. Replay
d. ARP poisoning

Answer 1

b. Man-in-the-browser (MITB)

Question 2

Olivia was asked to protect the system from a DNS poisoning attack. What are the locations she would need to protect?

a. Web server buffer and host DNS server
b. Reply referrer and domain buffer
b. Web browser and browser add-on
d. Host table and external DNS server

Answer 2

d. Host table and external DNS server

Question 3

Newton is concerned that attackers could be exploiting a vulnerability in software to gain access to resources that the user normally would be restricted from accessing. What type of attack is he worried about?

a. Privilege escalation
b. Session replay
c. Scaling exploit
d. Amplification

Answer 3

a. Privilege escalation

Question 4

Which of the following adds new functionality to the web browser so that users can play music, view videos, or display special graphical images within the browser?

a. Extensions
b. Scripts
c. Plug-ins
d. Add-ons

Answer 4

c. Plug-ins

Question 5

An attacker who manipulates the maximum size of an integer type would be performing what kind of attack?

a. integer overflow
b. buffer overflow
c. number overflow
d. heap overflow

Answer 5

a. integer overflow

Question 6

What kind of attack is performed by an attacker who takes advantage of the inadvertent and unauthorized access built through three succeeding systems that all trust one another?

a. privilege escalation
b. cross-site attack
c. horizontal access attack
d. transverse attack

Answer 6

a. privilege escalation

Question 7

Which statement is correct regarding why traditional network security devices cannot be used to block web application attacks?

a. The complex nature of TCP/IP allows for too many ping sweeps to be blocked.
b. Web application attacks use web browsers that cannot be controlled on a local computer.
c. Network security devices cannot prevent attacks from web resources.
d. Traditional network security devices ignore the content of HTTP traffic, which is the vehicle of web application attacks.

Answer 7

d. Traditional network security devices ignore the content of HTTP traffic, which is the vehicle of web application attacks.

Question 8

What is the difference between a DoS and a DDoS attack?

a. DoS attacks are faster than DDoS attacks
b. DoS attacks use fewer computers than DDoS attacks
c. DoS attacks do not use DNS servers as DDoS attacks do
d. DoS attacks user more memory than a DDoS attack

Answer 8

b. DoS attacks use fewer computers than DDoS attacks

Question 9

John was explaining about an attack that accepts user input without validating it and uses that input in a response. What type of attack was he describing?

a. SQL
b. XSS
c. XSRF
d. DDoS DNS

Answer 9

b. XSS

Question 10

Which attack uses the user’s web browser settings to impersonate that user?

a. XDD
b. XSRF
c. Domain hijacking
d. Session hijacking

Answer 10

b. XSRF

Question 11

What is the basis of an SQL injection attack?

a. to expose SQL code so that it can be examined
b. to have the SQL server attack client web browsers
c. to insert SQL statements through unfiltered user input
d. to link SQL servers into a botnet

Answer 11

c. to insert SQL statements through unfiltered user input

Question 12

Which action cannot be performed through a successful SQL injection attack?

a. discover the names of different fields in a table
b. reformat the web application server’s hard drive
c. display a list of customer telephone numbers
d. erase a database table

Answer 12

b. reformat the web application server’s hard drive

Question 13

Attackers who register domain names that are similar to legitimate domain names are performing _____.

a. Address resolution
b. HTTP manipulation
c. HTML squatting
d. URL hijacking

Answer 13

d. URL hijacking

Question 14

What type of attack involves manipulating third-party ad networks?

a. Session advertising
b. Malvertising
c. Clickjacking
d. Directory traversal

Answer 14

b. Malvertising

Question 15

Why are extensions, plug-ins, and add-ons considered to be security risks?

a. They are written in Java, which is a weak language.
b. They have introduced vulnerabilities in browsers.
c. They use bitcode.
d. They cannot be uninstalled.

Answer 15

b. They have introduced vulnerabilities in browsers.

Question 16

What is a session token?

a. XML code used in an XML injection attack
b. a random string assigned by a web server
c. another name for a third-party cookie
d. a unique identifier that includes the user’s email address

Answer 16

b. a random string assigned by a web server

Question 17

Which of these is not a DoS attack?

a. SYN flood
b. DNS amplification
c. smurf attack
d. push flood

Answer 17

d. push flood

Question 18

What type of attack intercepts legitimate communication and forges a fictitious response to the sender?

a. SIDS
b. interceptor
c. MITM
d. SQL intrusion

Answer 18

c. MITM

Question 19

A replay attack _____.

a. can be prevented by patching the web browser
b. is considered to be a type of DoS attack
c. makes a copy of the transmission for use at a later time
d. replays the attack over and over to flood the server

Answer 19

c. makes a copy of the transmission for use at a later time

Question 20

DNS poisoning _____.

a. floods a DNS server with requests until it can no longer respond
b. is rarely found today due to the use of host tables
c. substitutes DNS addresses so that the computer is automatically redirected to another device
d. is the same as ARP poisoning

Answer 20

c. substitutes DNS addresses so that the computer is automatically redirected to another device

Question 21

XSS is like a phishing attack but without needing to trick the user into visiting a malicious website.

(T/F)

Answer 21

True

Question 22

What two locations can be a target for DNS poisoning? (Choose all that apply.)

a) local host table
b) local database table
c) external DNS server
d) directory server

Answer 22

a) local host table
c) external DNS server

Question 23

How is a network-based MITM attack executed?

Answer 23

The threat agent intercepts information being sent from victim A to victim B and other information and sends the now altered information to victim B.

Question 24

Which ty pe of attack broadcasts a network request to multiple computers but changes the address from which the request came to the victim’s computer?

a) DNS Poisoning
b) smurf attack
c) denial of service
d) IP spoofing

Answer 24

b) smurf attack

Question 25

When an attacker promotes themselves as reputable third-party advertisers to distribute their malware through the Web ads, what type attack is being performed?

a) malvertising
b) clickjacking
c) ad squatting
d) ad spoofing

Answer 25

a) malvertising

Question 26

What criteria must be met for an XXS attack to occur on a specific website?

a) the website must accept user input without validating it and use that input in a respone
b) the website must accept user input while validating it and omit that input in a response
c) the website must accept user input while validating it and use that input in a response
d) the website must not accept user input without validating it and use that input in a response

Answer 26

a) the website must accept user input without validating it and use that input in a respone

Question 27

What attack occurs when a domain pointer that links a domain name to a specific web server is changed by a threat actor?

a) clickjacking
b) domain hijacking
c) DNS spoofing
d) pointer hack

Answer 27

b) domain hijacking

Question 28

The return address is the only element that can be altered in a buffer overflow attack.

(T/F)

Answer 28

False