Which of the following languages are vulnerable to a buffer overflow attack?
Each correct answer represents a complete solution. Choose all that apply.

• A.Action script
• B.C++
• C.C
• D.Java

Comment: *

Name: *

Email: *

Verification: *

Ryan, a malicious hacker submits Cross-Site Scripting (XSS) exploit code to the Website of Internet forum for online
discussion. When a user visits the infected Web page, code gets automatically executed and Ryan can easily perform
acts like account hijacking, history theft etc. Which of the following types of Cross-Site Scripting attack Ryan intends to
do?

• A.Non persistent
• B.SAX
• C.Document Object Model (DOM)
• D.Persistent

Comment: *

Name: *

Email: *

Verification: *

Which of the following rootkits patches, hooks, or replaces system calls with versions that hide information about the attacker?

• A.Kernel level rootkit
• B.Hypervisor rootkit
• C.Library rootkit
• D.Boot loader rootkit

Comment: *

Name: *

Email: *

Verification: *

In which of the following attacks does the attacker gather information to perform an access attack?

• A.Land attack
• B.Reconnaissance attack
• C.Vulnerability attack
• D.DoS attack

Comment: *

Name: *

Email: *

Verification: *

You work as a Network Penetration tester in the Secure Inc. Your company takes the projects to test the security of various companies. Recently, Secure Inc. has assigned you a project to test the security of a Web site. You go to the Web site login page and you run the following SQL query:
SELECT email, passwd, login_id, full_name
FROM members
WHERE email = '[email protected]'; DROP TABLE members; --'
What task will the above SQL query perform?

• A.Deletes the database in which members table resides.
• B.Performs the XSS attacks.
• C.Deletes the entire members table.
• D.Deletes the rows of members table where email id is '[email protected]' given.

Comment: *

Name: *

Email: *

Verification: *