Crowdly

Add to Chrome

Universities
vns.lpnu.ua
Безпека мережевих операційних систем

Безпека мережевих операційних систем

Looking for Безпека мережевих операційних систем test answers and solutions? Browse our comprehensive collection of verified answers for Безпека мережевих операційних систем at vns.lpnu.ua.

Get instant access to accurate answers and detailed explanations for your course questions. Our community-driven platform helps students succeed!

What is the key difference between DOM-Based XSS and other types of XSS?

DOM-Based XSS occurs entirely in the browser without server involvement

DOM-Based XSS requires server-side interaction

DOM-Based XSS uses cookies to execute the script

DOM-Based XSS targets CSS instead of JavaScript

View this question

Which of the following is a vulnerability that session fixation exploits?

Using encrypted tokens

Implementing secure cookie attributes

Changing the session identifier after authentication

Maintaining the same session token across authentication states

100%

View this question

What is the primary purpose of serialization in software applications?

Generating unique identifiers for objects

Transforming an object’s state into a storable or transferable format

100%

Compressing data to reduce file size

Encrypting data to prevent unauthorized access

View this question

Why are APIs particularly vulnerable to business logic flaws?

API endpoints are always public and easy to access.

APIs often expose sensitive business processes with insufficient access controls.

100%

They rely entirely on client-side validation.

They lack encryption for transmitted data.

View this question

Which scenario is an example of step-manipulation?

Sending multiple concurrent requests to overload the server.

Modifying an input field to bypass client-side restrictions.

Exploiting a SQL query to retrieve unauthorized data.

Skipping the payment page in an e-commerce workflow and directly finalizing the order.

100%

View this question

Which of the following indicates a vulnerability in client-side validation?

The application does not restrict input size, causing a buffer overflow.

Sensitive information is stored in plaintext in the database.

User accounts are not locked after multiple failed login attempts.

Client-side JavaScript checks the maximum value of an input field, but the server doesn’t enforce this.

100%

View this question

Which of the following best describes a business logic vulnerability?

A misconfiguration of authentication and authorization protocols.

A weakness in an application’s intended workflows, leading to unintended consequences.

57%

A flaw caused by improper handling of database queries.

A vulnerability caused by improper encryption techniques.

View this question

Which industry-specific business logic vulnerability is most likely in an online gaming application?

Bypassing CAPTCHA during registration.

Manipulating shipping charges in an e-commerce platform.

Falsifying credit scores in a banking application.

Exploiting item duplication mechanics through race conditions.

100%

View this question

What is a common way to mitigate step-manipulation attacks?

Disabling unused API endpoints.

Setting input size limits in HTML forms.

Using stronger encryption for sensitive data.

Implementing unique session tokens to validate workflow integrity.

100%

View this question

What challenge does locking address in distributed systems?

Preventing unauthorized user logins.

Protecting sensitive data through encryption.

Ensuring critical resources are not modified concurrently by multiple processes.

100%

Enforcing user roles in role-based access control.

View this question

Want instant access to all verified answers on vns.lpnu.ua?

Get Unlimited Answers To Exam Questions - Install Crowdly Extension Now!

Add to Chrome

Telegram Instagram TikTok Question Bank

Add to Chrome