23 Jul Practice Test Question – IO Security Vulnerabilities
Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies.
Which one of the following security vulnerabilities is NOT a common result of improper input handling?
A. SQL injection
B. Cross-site scripting
C. Buffer overflow
D. Distributed denial of service
Correct Answer: D
SQL injection, cross-site scripting, and buffer overflow attacks all occur when applications do not properly screen user-provided input for potentially malicious content. Distributed denial of service attacks use botnets of compromised systems to conduct a brute force resource exhaustion attack against a common target.