312-49 Question #103: Real Exam Question with Answer & Explanation

The correct answer is A: Plaintext. In a new line injection (log injection) attack against a simple logging mechanism, the attacker injects plaintext that includes newline characters (e.g., \n or \r\n) to forge or manipulate log entries. Because the system has minimal logging controls, it does not sanitize input, s

Submitted by satoshi_tk· Apr 18, 2026Computer Forensics Investigation Process

Question

A system with a simple logging mechanism has not been given much attention during development, this system is now being targeted by attackers, if the attacker wants to perform a new line injection attack, what will he/she inject into the log file?

Options

APlaintext
BSingle pipe character
CMultiple pipe characters
DHTML tags

Explanation

In a new line injection (log injection) attack against a simple logging mechanism, the attacker injects plaintext that includes newline characters (e.g., \n or \r\n) to forge or manipulate log entries. Because the system has minimal logging controls, it does not sanitize input, so the attacker can insert fake log lines that appear legitimate. Pipe characters are used in command injection, and HTML tags are relevant to XSS â€” not log injection.

Topics

#Log Injection#Log Tampering#Vulnerability#Forensic Evidence

Community Discussion

No community discussion yet for this question.

Full 312-49 Practice Browse All 312-49 Questions