EC-COUNCIL 312-50V8 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V8 Online Questions & Answers

• Question 901:

  A Buffer Overflow attack involves:

  A. Using a trojan program to direct data traffic to the target host's memory stack
  B. Flooding the target network buffers with data traffic to reduce the bandwidth available to legitimate users
  C. Using a dictionary to crack password buffers by guessing user names and passwords
  D. Poorly written software that allows an attacker to execute arbitrary code on a target system
  D. Poorly written software that allows an attacker to execute arbitrary code on a target system

• Question 902:

  You are performing a port scan with nmap. You are in hurry and conducting the scans at the fastest possible speed. However, you don't want to sacrifice reliability for speed. If stealth is not an issue, what type of scan should you run to get very reliable results?

  A. Stealth scan
  B. Connect scan
  C. Fragmented packet scan
  D. XMAS scan
  B. Connect scan

• Question 903:

  What is the problem with this ASP script (login.asp)?

  

  A. The ASP script is vulnerable to Cross Site Scripting attack
  B. The ASP script is vulnerable to Session Splice attack
  C. The ASP script is vulnerable to XSS attack
  D. The ASP script is vulnerable to SQL Injection attack
  D. The ASP script is vulnerable to SQL Injection attack

• Question 904:

  How many bits encryption does SHA-1 use?

  A. 64 bits
  B. 128 bits
  C. 160 bits
  D. 256 bits
  C. 160 bits

• Question 905:

  ETHER: Destination address : 0000BA5EBA11 ETHER: Source address : An employee wants to defeat detection by a network-based IDS application. He does not want to attack the system containing the IDS application. Which of the following strategies can be used to defeat detection by a network-based IDS application?

  

  A. Create a SYN flood
  B. Create a network tunnel
  C. Create multiple false positives
  D. Create a ping flood
  B. Create a network tunnel

• Question 906:

  A tester has been using the msadc.pl attack script to execute arbitrary commands on a Windows NT4 web server. While it is effective, the tester finds it tedious to perform extended functions. On further research, the tester come across a perl script that runs the following msadc functions:system("perl msadc.pl -h $host -C \"echo open $your >testfile\"");

  

  Which exploit is indicated by this script?

  A. A buffer overflow exploit
  B. A chained exploit
  C. A SQL injection exploit
  D. A denial of service exploit
  B. A chained exploit

• Question 907:

  Which of the following techniques can be used to mitigate the risk of an on-site attacker from connecting to an unused network port and gaining full access to the network? (Choose three.)

  A. Port Security
  B. IPSec Encryption
  C. Network Admission Control (NAC)
  D. 802.1q Port Based Authentication
  E. 802.1x Port Based Authentication
  F. Intrusion Detection System (IDS)
  A. Port Security
  C. Network Admission Control (NAC)
  E. 802.1x Port Based Authentication

• Question 908:

  What type of port scan is shown below?

  

  A. Idle Scan
  B. FIN Scan
  C. XMAS Scan
  D. Windows Scan
  B. FIN Scan

• Question 909:

  Peter is a Network Admin. He is concerned that his network is vulnerable to a smurf attack. What should Peter do to prevent a smurf attack? Select the best answer.

  A. He should disable unicast on all routers
  B. Disable multicast on the router
  C. Turn off fragmentation on his router
  D. Make sure all anti-virus protection is updated on all systems
  E. Make sure his router won't take a directed broadcast
  E. Make sure his router won't take a directed broadcast

• Question 910:

  Which tool can be used to silently copy files from USB devices?

  A. USB Grabber
  B. USB Dumper
  C. USB Sniffer
  D. USB Snoopy
  B. USB Dumper