An active content module, which attempts to monopolize and exploits system resources is called a
A.
Macro virus
B.
Hostile applet
C.
Plug-in worm
D.
Cookie
Explanation:
This applet can execute in the network browser and may contain malicious code. The types of
downloadable programs are also known as mobile code. -Ronald Krutz The CISSP PREP Guide (gold
edition) pg 361 “ActiveX Controls are Microsoft’s answer to Sun’s Java applets. They operate in a
very similar fashion, but they are implemented using any on of a variety of languages, including
Visual Basic, C, C++ and Java. There are two key distinctions between Java applets and ActiveX
controls. First, ActiveX controls use proprietary Microsoft technology and, therefore, can only
execute on systems running Microsoft operating systems. Second, ActiveX controls are not subject
to the sandbox restrictions placed on Java applets. They have full access to the Windows operating
environment and can perform a number of privileged actions. Therefore, special precautions must
be taken when deciding which ActiveX controls to download and execute. Many security
administrators have taken the somewhat harsh position of prohibiting the download of any ActiveX
content from all but a select handful of trusted sites.” Pg. 214 Tittel: CISSP Study Guide