Deck 8: Application Security

A) operating system
B) buffer overflow
C) root
D) PHP

A) stacks
B) stack entries
C) returns
D) buffers

A) stack overflow
B) buffer overflow
C) overfiltering
D) a data buffer

A) XSS
B) IIS
C) IPP
D) SQL

A) A vulnerability tracking service
B) A virus
C) An application that runs on Windows
D) An antivirus program

A) Tools menu
B) Action menu
C) Security tab of the Internet Options dialog box
D) Privacy tab of the Internet Options dialog box

A) IIS
B) IPP
C) XSS
D) SQL

A) Login screen bypass
B) Cross-site scripting
C) An SQL query
D) SQL injection

A) Login screen bypass
B) Cross-site scripting
C) An SQL query
D) SQL injection

A) C
B) IIS
C) Ajax
D) SQL

A) Ajax
B) C
C) IPP
D) SQL

A) Ajax
B) ISS
C) C
D) IPP

A) Ajax
B) ISS
C) C
D) IPP

A) Windows 10
B) Unix
C) Linux
D) Linux and Unix

A) Directory traversal attack
B) Mobile code
C) Cross-site scripting
D) Website defacement

A) ..
B) \
C) :\\
D) ::

A) /passwd
B) ../passwd
C) ../etc/passwd
D) ../root/passwd

A) Webserver-specific vulnerability assessment tools
B) Directory traversal attackers
C) Mobile code tools
D) Website defacement tools

A) 512
B) 500
C) 303
D) 404

A) development servers
B) testing servers
C) production servers
D) authentication servers

A) development servers
B) testing servers
C) production servers
D) authentication servers

A) development server
B) testing server
C) production server
D) authentication server

A) Ajaxes
B) Java applets
C) Cookies
D) Stack entries

A) Stacks
B) Stack entries
C) Buffers
D) Cookies

A) JavaScript
B) Java
C) Active-X
D) VBScript

A) are more difficult to use than programming languages like Active-X
B) are easier to use than full programming languages
C) have similar protections to Java
D) are more difficult to use than programming languages like Java

A) JavaScript
B) Active-X
C) Java
D) VBScript

A) Some websites use cookies.
B) Antispyware programs cannot identify dangerous cookies.
C) They allow a website to track what pages you have visited.
D) Cookies can remember your login name and password to websites.

A) Privacy
B) Advanced
C) Content
D) Security

A) Privacy
B) Advanced
C) Content
D) Security

A) Privacy
B) Advanced
C) Content
D) Security

A) It takes up more bandwidth than traditional text spam.
B) It isn't detectible.
C) It is smaller and less detectible than traditional text spam.
D) It consumes less bandwidth and often can get past traditional spam detectors.

A) A cookie
B) A virus
C) Spam
D) A buffer

A) between an e-mail client and its mail server
B) between an authentication email and an e-mail client
C) only with suspicious e-mail
D) at the level of the PC

A) PKI
B) PGP
C) ISS
D) S/MIME

A) PKI
B) S/MIME
C) PGP
D) ISS

A) IP headers
B) UDP headers
C) RTP headers
D) Circles of trust

A) calling someone over a PSTN line
B) sending e-mail through the Internet
C) calling someone over the Internet
D) sending video over the Internet

A) codec
B) RTP header
C) buffer
D) TCP

A) UDP
B) codecs
C) buffers
D) TCP

A) VoIP
B) SIP
C) UDP
D) RTP

A) RTP packets
B) signaling transmissions
C) transport transmissions
D) PSTN

A) increase jitter
B) reduce throughput
C) make traffic unreadable
D) increase latency

A) RFC
B) SPIT
C) INVITE
D) VPN

A) SNMP
B) ARP
C) OSPF
D) RTP