Which of the following conditions must be given to allow a tester to exploit a Cross-Site Request Forgery (CSRF) vulnerable web application?
A) The victim user must open the malicious link with an Internet Explorer prior to version 8.
B) The session cookies generated by the application do not have the HttpOnly flag set.
C) The victim user must open the malicious link with a Firefox prior to version 3.
D) The web application should not use random tokens.
Correct Answer:
Verified
Q49: Which of the following techniques does a
Q50: What is the most secure way to
Q51: During a penetration test, a tester finds
Q52: Which command line switch would be used
Q53: The precaution of prohibiting employees from bringing
Q55: Which of the following cryptography attack methods
Q56: One way to defeat a multi-level security
Q57: What is the main difference between a
Q58: In the software security development life cyle
Q59: A Network Administrator was recently promoted to
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents