Which of the following is true of improper error handling? – McqOptions

MCQOPTIONS

1.	Which of the following is true of improper error handling?
A.	Attackers can use error messages to extract specific information from a system.
B.	Attackers can use unexpected errors to knock an application off line, creating a denial-of- service attack.
C.	Unexpected errors can provide an attacker with a buffer or stack overflow condition that sets the stage for an arbitrary code execution.
D.	All of the above.
Answer» E.

Discussion

No Comment Found

Related MCQs

This type of intrusion relies on the intruder's ability to trick people into breakingnormal security procedures.
In which of the following exploits does an attacker insert malicious coding into a link that appears to be from a trustworthy source?
Today, many Internet businesses and users take advantage of cryptography based onthis approach.
In what type of attack does an intruder manipulate a URL in such a way that the Web server executes or reveals the contents of a file anywhere on the server, including those lying outside the document root directory?
An intruder might install this on a networked computer to collect user ids andpasswords from other machines on the network.
This type of attack may cause additional damage by sending data containing codes designed to trigger specific actions - for example, changing data or disclosing confidential information.
One of the most obvious places to put an IDS sensor is near the firewall. Where exactlyin relation to the firewall is the most productive placement?
This is a mechanism for ensuring that only authorized users can copy or use specific software applications.
This was commonly used in cryptography during World War II.
What "layer" of an e-mail message should you consider when evaluating e-mailsecurity?