nerdexam
EC-Council

312-50V10 · Question #741

Which of the following parameters describe LM Hash: I - The maximum password length is 14 characters II - There are no distinctions between uppercase and lowercase III - The password is split into two

The correct answer is C. I, II, and III. All three statements accurately describe LM Hash: 14-character max length, no case sensitivity, and a 7-byte split - making all three correct.

System Hacking

Question

Which of the following parameters describe LM Hash:

I - The maximum password length is 14 characters II - There are no distinctions between uppercase and lowercase III - The password is split into two 7-byte halves

Options

  • AII
  • BI
  • CI, II, and III
  • DI and II

How the community answered

(32 responses)
  • B
    3% (1)
  • C
    94% (30)
  • D
    3% (1)

Why each option

All three statements accurately describe LM Hash: 14-character max length, no case sensitivity, and a 7-byte split - making all three correct.

AII

Selecting only statement II ignores the documented 14-character length limit and the 7-byte split, both of which are defining structural properties of LM Hash.

BI

Selecting only statement I ignores the lack of case distinction and the 7-byte split, which are equally fundamental weaknesses of the LM Hash algorithm.

CI, II, and IIICorrect

LAN Manager (LM) Hash enforces a maximum password length of 14 characters, padding shorter passwords with null bytes. Before hashing, all lowercase letters are converted to uppercase, eliminating case distinctions and reducing the keyspace. The 14-character password is split into two independent 7-byte halves, each hashed separately with DES, which makes brute-force attacks significantly faster because each half can be attacked independently.

DI and II

Selecting I and II ignores statement III, which correctly describes how LM Hash divides the password into two 7-byte halves before applying DES encryption.

Concept tested: LAN Manager Hash algorithm structure and weaknesses

Source: https://learn.microsoft.com/en-us/windows-server/security/kerberos/passwords-technical-overview

Topics

#LM hash#password cracking#Windows authentication#hash characteristics

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice