Instant Access EC-COUNCIL.312-50v10.v2022-08-11.q236 Actual Practice Test Engine for Free (Page 36)

40%off

312-50v10 Premium Dumps

Latest 312-50v10 Exam Premium Dumps provide by TrainingQuiz.com to help you Passing 312-50v10 Exam! TrainingQuiz.com offers the updated 312-50v10 exam dumps, the TrainingQuiz.com 312-50v10 exam questions has been updated to correct Answer. Get the latest TrainingQuiz.com 312-50v10 pdf dumps with Exam Engine here:

(745 Q&As Dumps, 40%OFF Special Discount: DumpsDB)

Question 171

What is a "Collision attack" in cryptography?

A.Collision attacks try to find two inputs producing the same hash.
B.Collision attacks try to break the hash into two parts, with the same bytes in each part to get the private key.
C.Collision attacks try to get the public key.
D.Collision attacks try to break the hash into three parts to get the plaintext value.

Question 172

A company's security policy states that all Web browsers must automatically delete their HTTP browser cookies upon terminating. What sort of security breach is this policy attempting to mitigate?

A.Attempts by attackers to access Web sites that trust the Web browser user by stealing the user's authentication credentials.
B.Attempts by attackers to access the user and password information stored in the company's SQL database.
C.Attempts by attackers to access passwords stored on the user's computer without the user's knowledge.
D.Attempts by attackers to determine the user's Web browser usage patterns, including when sites were visited and for how long.

Question 173

A security analyst in an insurance company is assigned to test a new web application that will be used by clients to help them choose and apply for an insurance plan. The analyst discovers that the application is developed in ASP scripting language and it uses MSSQL as a database backend. The analyst locates the application's search form and introduces the following code in the search input field:

When the analyst submits the form, the browser returns a pop-up window that says
"Vulnerable".
Which web applications vulnerability did the analyst discover?

A.Cross-site scripting
B.Cross-site request forgery
C.SQL injection
D.Command injection

Question 174

You are an Ethical Hacker who is auditing the ABC company. When you verify the NOC one of the
machines has 2 connections, one wired and the other wireless. When you verify the configuration of this
Windows system you find two static routes.
route add 10.0.0.0 mask 255.0.0.0 10.0.0.1
route add 0.0.0.0 mask 255.0.0.0 199.168.0.1
What is the main purpose of those static routes?

A.Both static routes indicate that the traffic is external with different gateway.
B.Both static routes indicate that the traffic is internal with different gateway.
C.The first static route indicates that the internal traffic will use an external gateway and the second static
route indicates that the traffic will be rerouted.
D.The first static route indicates that the internal addresses are using the internal gateway and the
second static route indicates that all the traffic that is not internal must go to an external gateway.

Question 175

Elliot is in the process of exploiting a web application that uses SQL as a back-end database. He is determined that the application is vulnerable to SQL injection and has introduced conditional timing delays into injected queries to determine whether they are successful. What type of SQL injection is Elliot most likely performing?

A.Union-based SQL injection
B.Blind SQL injection
C.Error-based SQL injection
D.NoSQL injection