EC-Council
EC0-350 · Question #17
EC0-350 Question #17: Real Exam Question with Answer & Explanation
Sign in or unlock EC0-350 to reveal the answer and full explanation for question #17. The question stem and answer options stay visible for context.
Question
Bret is a web application administrator and has just read that there are a number of surprisingly common web application vulnerabilities that can be exploited by unsophisticated attackers with easily available tools on the Internet. He has also read that when an organization deploys a web application, they invite the world to send HTTP requests. Attacks buried in these requests sail past firewalls, filters, platform hardening, SSL, and IDS without notice because they are inside legal HTTP requests. Bret is determined to weed out vulnerabilities. What are some of the common vulnerabilities in web applications that he should be concerned about?
Options
- ANon-validated parameters, broken access control, broken account and session management,
- BVisible clear text passwords, anonymous user account set as default, missing latest security patch,
- CNo SSL configured, anonymous user account set as default, missing latest security patch,
- DNo IDS configured, anonymous user account set as default, missing latest security patch,
Unlock EC0-350 to see the answer
You've previewed enough free EC0-350 questions. Unlock EC0-350 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.