GAQM CEH-001 Online Practice Questions and Exam Preparation

GAQM CEH-001 Online Questions & Answers

• Question 341:

  A newly discovered flaw in a software application would be considered which kind of security vulnerability?

  A. Input validation flaw
  B. HTTP header injection vulnerability
  C. 0-day vulnerability
  D. Time-to-check to time-to-use flaw
  C. 0-day vulnerability

• Question 342:

  Consider the following code:

  URL:http://www.certified.com/search.pl?

  text=

  If an attacker can trick a victim user to click a link like this, and the Web application does not validate input, then the victim's browser will pop up an alert showing the users current set of cookies. An attacker can do much more damage,

  including stealing passwords, resetting your home page, or redirecting the user to another Web site.

  What is the countermeasure against XSS scripting?

  A. Create an IP access list and restrict connections based on port number
  B. Replace "" characters with "and l t;" and "and g t;" using server scripts
  C. Disable Javascript in IE and Firefox browsers
  D. Connect to the server using HTTPS protocol instead of HTTP
  B. Replace "" characters with "and l t;" and "and g t;" using server scripts

• Question 343:

  A computer science student needs to fill some information into a secured Adobe PDF job application that was received from a prospective employer. Instead of requesting a new document that allowed the forms to be completed, the student decides to write a script that pulls passwords from a list of commonly used passwords to try against the secured PDF until the correct password is found or the list is exhausted. Which cryptography attack is the student attempting?

  A. Man-in-the-middle attack
  B. Brute-force attack
  C. Dictionary attack
  D. Session hijacking
  C. Dictionary attack

• Question 344:

  Ethereal works best on ____________.

  A. Switched networks
  B. Linux platforms
  C. Networks using hubs
  D. Windows platforms
  E. LAN's
  C. Networks using hubs

• Question 345:

  Kevin is an IT security analyst working for Emerson Time Makers, a watch manufacturing company in Miami. Kevin and his girlfriend Katy recently broke up after a big fight. Kevin believes that she was seeing another person. Kevin, who has

  an online email account that he uses for most of his mail, knows that Katy has an account with that same company. Kevin logs into his email account online and gets the following URL after successfully logged in: http://

  www.youremailhere.com/ mail.asp?mailbox=KevinandSmith=121%22 Kevin changes the URL to:

  http://www.youremailhere.com/mail.asp?mailbox=KatyandSanchez=121%22 Kevin is trying to access her email account to see if he can find out any information.

  What is Kevin attempting here to gain access to Katy's mailbox?

  A. This type of attempt is called URL obfuscation when someone manually changes a URL to try and gain unauthorized access
  B. By changing the mailbox's name in the URL, Kevin is attempting directory transversal
  C. Kevin is trying to utilize query string manipulation to gain access to her email account
  D. He is attempting a path-string attack to gain access to her mailbox
  C. Kevin is trying to utilize query string manipulation to gain access to her email account

• Question 346:

  A tester has been hired to do a web application security test. The tester notices that the site is dynamic and must make use of a back end database. In order for the tester to see if SQL injection is possible, what is the first character that the tester should use to attempt breaking a valid SQL request?

  A. Semicolon
  B. Single quote
  C. Exclamation mark
  D. Double quote
  B. Single quote

• Question 347:

  This is an attack that takes advantage of a web site vulnerability in which the site displays content that includes un-sanitized user-provided data. See foobar What is this attack?

  A. Cross-site-scripting attack
  B. SQL Injection
  C. URL Traversal attack
  D. Buffer Overflow attack
  A. Cross-site-scripting attack

• Question 348:

  Bluetooth uses which digital modulation technique to exchange information between paired devices?

  A. PSK (phase-shift keying)
  B. FSK (frequency-shift keying)
  C. ASK (amplitude-shift keying)
  D. QAM (quadrature amplitude modulation)
  A. PSK (phase-shift keying)

• Question 349:

  An attacker is attempting to telnet into a corporation's system in the DMZ. The attacker doesn't want to get caught and is spoofing his IP address. After numerous tries he remains unsuccessful in connecting to the system. The attacker rechecks that the target system is actually listening on Port 23 and he verifies it with both nmap and hping2. He is still unable to connect to the target system. What could be the reason?

  A. The firewall is blocking port 23 to that system
  B. He needs to use an automated tool to telnet in
  C. He cannot spoof his IP and successfully use TCP
  D. He is attacking an operating system that does not reply to telnet even when open
  C. He cannot spoof his IP and successfully use TCP

• Question 350:

  The FIN flag is set and sent from host A to host B when host A has no more data to transmit (Closing a TCP connection). This flag releases the connection resources. However, host A can continue to receive data as long as the SYN sequence numbers of transmitted packets from host B are lower than the packet segment containing the set FIN flag.

  A. false
  B. true
  B. true