Lesson 2 - Passing Data to Subsystems

Quiz

•

Computers

•

University

•

Practice Problem

•

Medium

Babak Brad

Used 58+ times

FREE Resource

10 questions

Show all answers

1.

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

What is the main security problem with meta-characters, when a dynamic web applications pass data to a subsystem?

The parser may switch context from normal text to control command.

They may contain names, addresses, passwords, and some private information.

They contain raw data, instead of encrypted data.

The programmer is not able to handle them.

2.

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

Any database server based on SQL will need to have quotes escaped in string constants.

True

False

3.

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

The hyphens are not the main root of problem in SQL injection attack.

True

False

4.

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

If a program run an external command using operating system, the risk of which attack is more probably increased?

SQL injection

Shell command injection

Session Hijacking

All the above answers

5.

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

All the following methods are useful to reduce the risk of Shell Command Injection, except:

Managing without the shell

Avoiding user input in the command arguments

Avoiding 'Finger' and 'Sendmail' commands

Handling shell metacharacters

6.

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

An attacker entered this input as email address when registering in a system. What attack he intend to perform?

Shell command injection

SQL injection

Session hijacking

Metacharacter injection

7.

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

An attacker can modify queries that are sent to a database by playing with input to the web application. It describes ...

Shell Command Injection

SQL Injection

Cross-site Scripting

Session Hijacking

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

By signing up, you agree to our Terms of Service & Privacy Policy

Already have an account?

Similar Resources on Wayground

11 questions

Git basics

Quiz

•

University

10 questions

Kuiz 2 : Pemprosesan Perkataan

Quiz

•

12th Grade - University

10 questions

UIT1111 Modul 1 (COPTPA)

Quiz

•

University

7 questions

UCC 101 ALC Orientation Game

Quiz

•

University

10 questions

Structure of Java Program

Quiz

•

University

10 questions

Tes Awal Modul 5 CC

Quiz

•

University

10 questions

CodeTigers Python 101

Quiz

•

KG - Professional Dev...

11 questions

Latex

Quiz

•

University

Popular Resources on Wayground

10 questions

Honoring the Significance of Veterans Day

Interactive video

•

6th - 10th Grade

9 questions

FOREST Community of Caring

Lesson

•

1st - 5th Grade

10 questions

Exploring Veterans Day: Facts and Celebrations for Kids

Interactive video

•

6th - 10th Grade

19 questions

Veterans Day

Quiz

•

5th Grade

14 questions

General Technology Use Quiz

Quiz

•

8th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

15 questions

Circuits, Light Energy, and Forces

Quiz

•

5th Grade

19 questions

Thanksgiving Trivia

Quiz

•

6th Grade

Discover more resources for Computers

20 questions

Definite and Indefinite Articles in Spanish (Avancemos)

Quiz

•

8th Grade - University

7 questions

Force and Motion

Interactive video

•

4th Grade - University

9 questions

Principles of the United States Constitution

Interactive video

•

University

18 questions

Realidades 2 2A reflexivos

Quiz

•

7th Grade - University

10 questions

Dichotomous Key

Quiz

•

KG - University

25 questions

Integer Operations

Quiz

•

KG - University

7 questions

What Is Narrative Writing?

Interactive video

•

4th Grade - University

20 questions

SER vs ESTAR

Quiz

•

7th Grade - University

Lesson 2 - Passing Data to Subsystems

10 questions

What is the main security problem with meta-characters, when a dynamic web applications pass data to a subsystem?

Any database server based on SQL will need to have quotes escaped in string constants.

The hyphens are not the main root of problem in SQL injection attack.

If a program run an external command using operating system, the risk of which attack is more probably increased?

All the following methods are useful to reduce the risk of Shell Command Injection, except:

An attacker entered this input as email address when registering in a system. What attack he intend to perform?

An attacker can modify queries that are sent to a database by playing with input to the web application. It describes ...

If we do not handle metacharacters, our SQL-based database application will be vulnerable to SQL injection attacks.

A good measure against SQL injection attack is to pass query parameters separately from the SQL statement itself.

Which statement is incorrect about blacklisting of metacharacters in Shell Command Injection?

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers