101 · Question #256
The Flow Login feature prevents which web vulnerability from occurring?
The correct answer is C. Forceful browsing. The BIG-IP ASM Flow Login (Login Enforcement) feature requires users to follow a defined navigation sequence before accessing protected pages, directly preventing forceful browsing attacks.
Question
The Flow Login feature prevents which web vulnerability from occurring?
Options
- ABuffer overflow
- BCookie poisoning
- CForceful browsing
- DCross site scripting
How the community answered
(25 responses)- A4% (1)
- B8% (2)
- C88% (22)
Why each option
The BIG-IP ASM Flow Login (Login Enforcement) feature requires users to follow a defined navigation sequence before accessing protected pages, directly preventing forceful browsing attacks.
Buffer overflow is mitigated by parameter length restrictions and input size controls at the parameter or entity body level, not by login flow enforcement.
Cookie poisoning is addressed by ASM cookie security features such as cookie signing and encryption, which detect or prevent tampering with cookie values.
Forceful browsing is an attack where a user bypasses intended workflow steps and directly requests a URL that should only be accessible after completing prior steps such as authentication. Flow Login enforces that users must enter through the designated login page and complete the required flow before any protected resource is served, neutralizing this attack vector.
Cross-site scripting is prevented by attack signature inspection and parameter value sanitization that detect malicious script injection in input fields.
Concept tested: BIG-IP ASM Login Enforcement preventing forceful browsing
Source: https://techdocs.f5.com/en-us/bigip-16-1-0/big-ip-asm-implementations/preventing-forceful-browsing.html
Topics
Community Discussion
No community discussion yet for this question.