nerdexam
CompTIA

SY0-301 · Question #797

Which of the following is a vulnerability associated with disabling pop-up blockers?

The correct answer is D. Another browser instance may execute malicious code. Pop-up blockers exist to prevent websites from spawning additional browser windows or tabs without user consent. Disabling them allows malicious sites to open secondary browser instances that can run malicious scripts, launch drive-by downloads, execute cross-site scripting (XSS)

Threats, vulnerabilities, and mitigations

Question

Which of the following is a vulnerability associated with disabling pop-up blockers?

Options

  • AAn alert message from the administrator may not be visible
  • BA form submitted by the user may not open
  • CThe help window may not be displayed
  • DAnother browser instance may execute malicious code

How the community answered

(55 responses)
  • A
    2% (1)
  • C
    4% (2)
  • D
    95% (52)

Explanation

Pop-up blockers exist to prevent websites from spawning additional browser windows or tabs without user consent. Disabling them allows malicious sites to open secondary browser instances that can run malicious scripts, launch drive-by downloads, execute cross-site scripting (XSS) payloads, or perform clickjacking attacks. Options A, B, and C describe legitimate usability inconveniences, not security vulnerabilities.

Topics

#browser security#pop-up blockers#malicious code execution#web vulnerabilities

Community Discussion

No community discussion yet for this question.

Full SY0-301 Practice