312-50 Free Practice Test

- (Topic 1)
Which of the following best describes Vulnerability?

1. A. The loss potential of a threat
2. B. An action or event that might prejudice security
3. C. An agent that could take advantage of a weakness
4. D. A weakness or error that can lead to compromise

Correct Answer: D
A vulnerability is a flaw or weakness in system security procedures, design or implementation that could be exercised (accidentally triggered or intentionally exploited) and result in a harm to an IT system or activity.

- (Topic 23)
You are the chief information officer for your company, a shipping company based out of Oklahoma City. You are responsible for network security throughout the home office and all branch offices. You have implemented numerous layers of security from logical to physical. As part of your procedures, you perform a yearly network assessment which includes vulnerability analysis, internal network scanning, and external penetration tests. Your main concern currently is the server in the DMZ which hosts a number of company websites. To see how the server appears to external users, you log onto a laptop at a Wi-Fi hot spot. Since you already know the IP address of the web server, you create a telnet session to
that server and type in the command: HEAD /HTTP/1.0
After typing in this command, you are presented with the following screen: What are you trying to do here?

1. A. You are attempting to send an html file over port 25 to the web server.
2. B. By typing in the HEAD command, you are attempting to create a buffer overflow on the web server.
3. C. You are trying to open a remote shell to the web server.
4. D. You are trying to grab the banner of the web serve
5. E. *

Correct Answer: D

- (Topic 23)
NetBIOS over TCP/IP allows files and/or printers to be shared over the network. You are trying to intercept the traffic from a victim machine to a corporate network printer. You are attempting to hijack the printer network connection from your laptop by sniffing the wire. Which port does SMB over TCP/IP use?

1. A. 443
2. B. 139
3. C. 179
4. D. 445

Correct Answer: D

- (Topic 8)
Hackers usually control Bots through:

1. A. IRC Channel
2. B. MSN Messenger
3. C. Trojan Client Software
4. D. Yahoo Chat
5. E. GoogleTalk

Correct Answer: A
Most of the bots out today has a function to connect to a predetermined IRC channel in order to get orders.

- (Topic 12)
Liza has forgotten her password to an online bookstore. The web application asks her to key in her email so that they can send her the password. Liza enters her email liza@yahoo.com'. The application displays server error. What is wrong with the web application?

1. A. The email is not valid
2. B. User input is not sanitized
3. C. The web server may be down
4. D. The ISP connection is not reliable

Correct Answer: B
All input from web browsers, such as user data from HTML forms and cookies, must be stripped of special characters and HTML tags as described in the following CERT advisories:
http://www.cert.org/advisories/CA-1997-25.html
http://www.cert.org/advisories/CA-2000-02.html