Brainscape's Knowledge GenomeTM


Top Flashcards (Certified)
All Flashcards

CMP eRead > PBQ (ATTACKS and Mitigation) > Flashcards

PBQ (ATTACKS and Mitigation) Flashcards

(5 cards)

Start Studying
1
Q

21.16.163.17 - - [12/Mar/2021:22:31:12 0500]
“GET /items.jsp?<SCRIPT>userspy</SCRIPT>.jsp HTTP/1.1” 200

A

Attack = XSS, Control = Input Validation and Sanitization

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

87.12.31.57 - - [12/Dec/2020:08:22:27 0100]
“GET /items/items.asp?itemid=999% UNION%SELECT%user-name, password%FROM%USERS”…

A

Attack = SQL Injection, Control = Use prepared statements with variable binding

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

74.236.12.4 - - [4/June/2020:03:26:27 0100]
“GET /customer_account?customer_number=132355”…
74.236.12.4 - - [4/June/2020:03:25:27 0100]
“GET /customer_account?customer_number=254784”…

A

Attack = Insecure Object Reference
Control = Utilize indirect references

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which vulnerability had a wide footprint due to the OpenSSL implementation of the TLS layer?

A

HeartBleed is a security vulnerability discovered in OpenSSL cryptographic software library

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What controls can be put in place to mitigate SQL Injection Vulnerabilities?

A

Using prepared statements and variable binding

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

CMP eRead (4 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions