PrepAway - Latest Free Exam Questions & Answers

Author: seenagape

what could a malicious user input to the year value to actually delete the whole website?

Leave a comment

William, a software developer just starting his career, was asked to create a website in PHP that
would allow visitors to enter a month and a year for their birth date. The PHP code he creates has
to validate the input after it is entered. If William uses the following code, what could a malicious
user input to the year value to actually delete the whole website?
$month = $_GET[‘month’];
$year = $_GET[‘year’];
exec(“cal $month $year”, $result);
print “<PRE>”;
foreach($result as $r)
{

print “$r<BR>”;
}
print “</PRE>”;

What type of encryption will be used from the following code?

Leave a comment

What type of encryption will be used from the following code?
Dim Publickey As Byte() = {214,46,220,83,160,73,40,39,201
155,19,202,3,11,191,178,56,74,90,36,248,103,
18,144,170,163,145,87,54,61,34,220,222,207,
137,149,173,14,92,120,206,222,158,28,40,24,
30,16,175,108,128,35,203,118,40,121,113,125,
216,130,11,24,9,0,48,194,240,105,44,76,34,57,
249,228,125,80,38,9,136,29,117,207,139,168,181,
85,137,126,10,126,242,120,247,121,8,100,12,201,
171,38,226,193,180,190,117,177,87,143,242,213,
11,44,18,0,113,93,106,99,179,68,175,211,164,116,
64,148,226,254,172,147}
Dim Exponent As Byte() = {1,0,1}
Dim Encrypted SymmetricKey() As Byte
Dim Encrypted SymmetricIV() As Byte
Dim RSA as New RSACryptoServiceProvider()

Dim RSAKeyInfo As New RSAParameters()
RSAKeyInfo.Modules = PublicKey
RSAKeyInfo.Exponent = Exponent
RSA.ImportParameters(RSAKeyInfo)
Dim RM As New RijendaelManaged()
EncryptedSymmetricKey = RSA.Encrypt(RM.Key,False)
EncryptedSymmetricIV = RSA.Encrypt(RM.Key,False)

How could Peter accomplish this in his application?

Leave a comment

Peter is writing a program that has a GUI front-end and uses a MS SQL database as a backend.
Peter’s application will repeatedly update and call upon specific tables in the database on a
regular basis. Peter wants to make sure that his program always has the ability to update the
database and that no other calls or updates can touch the database tables used at the same time.
How could Peter accomplish this in his application?

What are the ISO 17799 domains?

Leave a comment

ISO 17799 has two parts. The first part is an implementation guide with guidelines on how to build
a comprehensive information security infrastructure and the second part is an auditing guide
based on requirements that must be met for an organization to be deemed compliant with ISO
17799. What are the ISO 17799 domains?
Each correct answer represents a complete solution. Choose all that apply.

What is the last aspect of error messages that Victor needs to create for his application?

Leave a comment

Victor has completed writing his software application and is now working on error messages that
will be displayed in case of any kind of failure or problem. He has written code that will display a

pop-up message where there is an error. He has also written code that explain the error that has
occurred. What is the last aspect of error messages that Victor needs to create for his application?

Which of the following stages in the Incident handling process involves your decision making?

Leave a comment

You are an Incident manager in Orangesect.Inc. You have been tasked to set up a new extension
of your enterprise. The networking, to be done in the new extension, requires different types of
cables and an appropriate policy that will be decided by you. Which of the following stages in the
Incident handling process involves your decision making?


Page 235 of 555« First...102030...233234235236237...240250260...Last »