| |||
|
|
||
|
|||
| |
|
Home > Infosec Know IT All Trivia: Application security |
| |
|
|
|
|
| Quiz: |
|
||
|
|||
|
|||
|
|||
|
|||
|
|||
|
|
||||||||||||||||||||||||||||||||||||||||||||||||
Test your knowledge of securing applications with these trivia questions. Scroll down to the bottom of the page for the correct answer. 1.) A cracker exploits this in order to use a Web application to transport an attack to a user's browser. It can expose a local machine or enable an attacker to spoof content. 2.) This language recently proposed to Oasis will be designed to provide a standard way for application vulnerabilities to be defined and classified. 3.) This attack against Web applications involves getting information from a server by modifying the session's cookie. 4.) In this type of attack against database-driven applications, the intruder manipulates a site's Web-based interfaces to force the database to execute undesirable code. 5.) This protects Web applications written in Perl from dangerous code by assuming that all user input is potentially malicious and placing restrictions on the actions that the script may perform on that input. What do you think of our trivia questions? Are they too easy? Too hard? Let us know.
Want to learn more about securing your applications? Listen to this on-demand webcast with @Stake program director Andrew Jaquith. ANSWERS: 1.) d. cross-site scripting flaw 2.) b. AVDL 3.) c. cookie poisoning 4.) b. SQL injection 5.) d. taint mode
|
|
|
|
||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
|||||||||||||||||||||||||
|
|||||||||||||||||||||||||||
| |||||||||||||||||||||||||||
|
|
|
|||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||
