Section 5: Vulnerabilities

Question 1

Type: Question & Answer
Question: What is a weakness in a system that can be exploited by a threat actor to gain unauthorised access or perform unauthorised actions on a system?

Answer 1

Answer: Vulnerability

Question 2

Type: Question & Answer
Question: What security technique involves an attacker injecting their code into an organisation’s infrastructure to run harmful instructions?

Answer 2

Answer: Memory Injection

Question 3

Type: Multiple Choice Question (Select ALL that apply)
Question: Which of the following are examples of Memory Injection vulnerabilities?
A) Code injection
B) Buffer Overflow
C) Denial of Service
D) DLL (Dynamic Link Libraries) Injections

Answer 3

Answer: A, B, D

Question 4

Type: Question & Answer
Question: What vulnerability occurs when data intended for a buffer exceeds its storage capacity, overwriting adjacent memory locations?

Answer 4

Answer: Buffer Overflow

Question 5

Type: True/False
Question: A buffer overflow can lead to malicious instructions being executed or corruption of important data.

Answer 5

Answer: True

Question 6

Type: Question & Answer
Question: What programming conundrum occurs when the outcome of an operation depends on the sequence or timing of other uncontrollable events, potentially leading to security flaws?

Answer 6

Answer: Race Condition

Question 7

Type: Multiple Choice Question (Select ONE answer)
Question: If a computer tries to do multiple things at once, and the result depends on the exact timing or order in which it happens, this indicates a:
A) Buffer overflow
B) Memory injection
C) Race condition
D) Malicious update

Answer 7

Answer: C) Race condition

Question 8

Type: Question & Answer
Question: What vulnerability occurs when an attacker attempts to install a fake update to the Operating System (OS) that causes a weakness in its security?

Answer 8

Answer: Malicious Update

Question 9

Type: True/False
Question: Malicious updates can be protected using code signing from the OS maker.

Answer 9

Answer: True

Question 10

Type: Question & Answer
Question: What is a weakness in the OS that can be exploited to gain unauthorised access, change permissions, or perform unauthorised actions?

Answer 10

Answer: Operating System (OS)-based Vulnerability

Question 11

Type: True/False
Question: Using unsupported operating systems like Windows XP or Windows 7 makes systems more secure due to their age.

Answer 11

Answer: False (Unsupported OS are easier to exploit due to a lack of updates.)

Question 12

Type: Question & Answer
Question: What type of attack involves an attacker typing malicious SQL code into an input field on a website to interact with its database?

Answer 12

Answer: Structured Query Language Injection (SQLI)

Question 13

Type: True/False
Question: SQL injection vulnerabilities are primarily caused by strong programming practices and robust input validation.

Answer 13

Answer: False (They are caused by bad programming that doesn’t properly handle input.)

Question 14

Type: Multiple Choice Question (Select ONE answer)
Question: An attacker typing admin’ OR ‘1’=’1 into a username field to bypass a login page is an example of a:
A) Cross-site scripting attack
B) Buffer overflow
C) SQL injection attack
D) Malicious update

Answer 14

Answer: C) SQL injection attack

Question 15

Type: Question & Answer
Question: What web application vulnerability involves an attacker injecting nasty code (like JavaScript) into a webpage that then runs in other users’ browsers?

Answer 15

Answer: Cross-Site Scripting (XSS)

Question 16

Type: True/False
Question: Cross-site scripting (XSS) occurs because a website carelessly displays user input without proper validation or cleaning.

Answer 16

Answer: True

Question 17

Type: True/False
Question: Input validation is key to fixing Cross-Site Scripting vulnerabilities.

Answer 17

Answer: True

Question 18

Type: Question & Answer
Question: Weaknesses in low-level software that runs on hardware devices are known as:

Answer 18

Answer: Firmware Vulnerabilities

Question 19

Type: Question & Answer
Question: Devices that are no longer supported by their manufacturers, resulting in unpatched vulnerabilities, are referred to as:

Answer 19

Answer: End-of-life Hardware

Question 20

Type: Question & Answer
Question: Older hardware that may no longer be compatible with current security measures is called:

Answer 20

Answer: Legacy Hardware

Question 21

Type: Question & Answer
Question: What major security concern in virtualisation allows an attacker to break out of a virtual machine and interact with the host system?

Answer 21

Answer: Virtual Machine (VM) Escape

Question 22

Type: Question & Answer
Question: What vulnerability in virtual environments allows sensitive data to remain within system resources and be accessed by other processes?

Answer 22

Answer: Resource Re-use

Question 23

Type: Question & Answer
Question: What cloud-specific vulnerability occurs when data stored on cloud servers is targeted by hackers, potentially exposing sensitive information?

Answer 23

Answer: Data Breaches

Question 24

Type: Question & Answer
Question: Weak authentication processes, inadequate credential management, and insufficient access controls leading to unauthorised access to cloud resources are referred to as:

Answer 24

Answer: Insufficient Identity, Credential, and Access Management

Question 25

Type: True/False Question: Cloud services accessed through interfaces and APIs that are not properly secured can be exploited.

Answer 25

Answer: True

Question 26

Type: Question & Answer Question: What type of cloud vulnerability describes complex cloud infrastructure that might contain system weaknesses, which, if not addressed, can be exploited to gain unauthorised access or disrupt services?

Answer 26

Answer: System Vulnerabilities

Question 27

Type: Question & Answer Question: An attacker gaining access to a user's cloud account to manipulate data, eavesdrop on transactions, and redirect clients to illegitimate websites is known as:

Answer 27

Answer: Account Hijacking

Question 28

Type: Question & Answer Question: If one of the service providers gets hacked, it can act as a backdoor right into your system, highlighting a weakness in the:

Answer 28

Answer: Supply Chain

Question 29

Type: True/False Question: A hardware provider placing malware directly onto a chip or building a backdoor into hardware before it reaches the client is a supply chain vulnerability.

Answer 29

Answer: True

Question 30

Type: True/False Question: A bug or weakness in software from a software provider that allows attackers to break in or mess up the system is a supply chain vulnerability.

Answer 30

Answer: True

Question 31

Type: Question & Answer Question: What type of cryptographic vulnerability occurs when the mathematical formulas used for encryption are no longer strong enough (e.g., DES)?

Answer 31

Answer: Algorithm Weakness

Question 32

Type: Question & Answer Question: Issues related to encryption keys not being made properly, stored securely, or handled carefully enough, leading to compromised "locked" data, are known as:

Answer 32

Answer: Key Management Issues

Question 33

Type: Multiple Choice Question (Select ONE answer) Question: Even if a strong algorithm is used, the way a programmer builds it into a system can mess it up, potentially causing a buffer overflow. This is an example of: A) Algorithm weakness B) Key management issue C) Poor implementation D) Data obfuscation

Answer 33

Answer: C) Poor Implementation

Question 34

Type: Question & Answer Question: Improper setup or configuration of software, hardware, or network systems leading to security weaknesses is called a:

Answer 34

Answer: Misconfiguration Vulnerability

Question 35

Type: Question & Answer Question: Default settings, unnecessary services being enabled, and inadequate security controls are examples of:

Answer 35

Answer: Misconfiguration Vulnerabilities

Question 36

Type: True/False Question: Not installing updates on a mobile device's operating system creates a security issue.

Answer 36

Answer: True

Question 37

Type: True/False Question: Using unencrypted Wi-Fi or Bluetooth connections can leave your data exposed.

Answer 37

Answer: True

Question 38

Type: Question & Answer Question: What mobile device vulnerability involves removing the software restrictions on a device to get root access to the OS?

Answer 38

Answer: Jailbreaking

Question 39

Type: Question & Answer Question: What is the process of installing applications on a mobile device from sources other than the official app store?

Answer 39

Answer: Side loading

Question 40

Type: Question & Answer Question: What type of security flaw is discovered by an attacker before the vendor is aware of it or before a patch is released to fix it?

Answer 40

Answer: Zero-Day Vulnerability

Question 41

Type: True/False Question: "Zero-day" refers to the fact that developers have zero days to fix an issue after it has already been exploited.

Answer 41

Answer: True