Which of the following attacks has MOST likely occurred?
Using a heuristic system to detect an anomaly in a computer’s baseline, a system administrator was able to
detect an attack even though the company signature based IDS and antivirus did not detect it. Further analysis
revealed that the attacker had downloaded an executable file onto the company PC from the USB port, and
executed it to trigger a privilege escalation flaw.
Which of the following attacks has MOST likely occurred?
Which of the following BEST describes this exploit?
A security analyst, Ann, is reviewing an IRC channel and notices that a malicious exploit has been created for a
frequently used application. She notifies the software vendor and asks them for remediation steps, but is
alarmed to find that no patches are available to mitigate this vulnerability.
Which of the following BEST describes this exploit?
Which of the following attack types has occurred?
A security administrator examines a network session to a compromised database server with a packet
analyzer. Within the session there is a repeated series of the hex character 90 (x90).
Which of the following attack types has occurred?
Which of the following was launched against a company b…
Which of the following was launched against a company based on the following IDS log?
122.41.15.252 – – [21/May/2012:00:17:20 +1200] “GET
/index.php?username=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1″ 200 2731 “http://www.company.com/cgibin/
forum/commentary.pl/noframes/read/209″ “Mozilla/4.0 (compatible;
MSIE 6.0; Windows NT 5.1; Hotbar 4.4.7.0)”
Which of the following attacks does this describe?
A server administrator notes that a legacy application often stops running due to a memory error. When
reviewing the debugging logs, they notice code being run calling an internal process to exploit the machine.
Which of the following attacks does this describe?
Which of the following attacks could be this an example of?
While opening an email attachment, Pete, a customer, receives an error that the application has encountered
an unexpected issue and must be shut down.
Which of the following attacks could be this an example of?
Which of the following application attacks is used to g…
Which of the following application attacks is used to gain access to SEH?
which type of attack?
Data execution prevention is a feature in most operating systems intended to protect against which type of
attack?
Which of the following describes this type of attack?
A malicious individual is attempting to write too much data to an application’s memory. Which of the following
describes this type of attack?
Which of the following was used to perform this attack?
Sara, a hacker, is completing a website form to request a free coupon. The site has a field that limits the
request to 3 or fewer coupons. While submitting the form, Sara runs an application on her machine to intercept
the HTTP POST command and change the field from 3 coupons to 30.
Which of the following was used to perform this attack?