Tag: security

Questions Related to security

Which of the following is essential information to a hacker performing a session-hijacking attack?
technology security

  1. Session ID

  2. Session number

  3. Sequence number

  4. Source IP address

Show answer
Correct Option: C

Which of the following is a countermeasure for a buffer overflow attack?
technology security

  1. Input field length validation

  2. Encryption

  3. Firewall

  4. Use of web forms

Show answer
Correct Option: A

Which of the following is the best countermeasure to session hijacking?
technology security

  1. Port filtering firewall

  2. Encryption

  3. Session monitoring

  4. Strong passwords

Show answer
Correct Option: B

What algorithm outputs a 128-bit message digest regardless of the length of the input?
technology security

  1. SHA

  2. MD5

  3. RC4

  4. RC6

Show answer
Correct Option: B

What is the process of replacing some characters with others in an encryption key?
technology security

  1. Transposition

  2. Subtraction

  3. Substitution

  4. Transrelation

Show answer
Correct Option: C

What Vulnerablity does JilWIN_32 exploit ?
technology security

  1. Blank Password

  2. IP Printing buffer overflow

  3. SQL Injection

  4. None of the choices

Show answer
Correct Option: B

An attack technique where a programming flaw allows an attacker to execute script in the victims's browser which can hijack user sessions, deface websites, possibly introduce worms, etc
technology security

  1. Broken authentication and Sesion Management

  2. Cross Site Request Forgery (CSRF)

  3. SQL Injection

  4. Cross Site Scripting (XSS)

Show answer
Correct Option: D

Security of application itself ensures absolute security of databases
technology security

  1. Yes

  2. No. Additional System Hardening is needed

  3. No.Additional Database hardening is needed.

  4. No. Additional Application hardening is needed.

Show answer
Correct Option: C

Which of the following API's associates a Subject with the thread of execution?
technology security

  1. Subject.doAs ()

  2. AccessController.checkPermission()

  3. SecurityManager.checkAccess()

  4. None of the above

Show answer
Correct Option: A

In this code, x is freed twice. What is the risk of this code? 

x = malloc(200); 
/* do something with x */ 
free(x);  
/* do something else */ 
free(x);
technology security

  1. This is a double free vulnerability and must be fixed.

  2. The second call to free() will return an error.

  3. There might be compiler warnings, but the program will run fine.

  4. This is not a security issue.

Show answer
Correct Option: A