EC-COUNCIL EC-COUNCIL Certifications 312-50V8 Questions & Answers

• Question 521:

  Which of the following defines the role of a root Certificate Authority (CA) in a Public Key Infrastructure (PKI)?

  A. The root CA is the recovery agent used to encrypt data when a user's certificate is lost.

  B. The root CA stores the user's hash value for safekeeping.

  C. The CA is the trusted root that issues certificates.

  D. The root CA is used to encrypt email messages to prevent unintended disclosure of data.

  Correct Answer: C

• Question 522:

  When setting up a wireless network, an administrator enters a pre-shared key for security.

  Which of the following is true?

  A. The key entered is a symmetric key used to encrypt the wireless data.

  B. The key entered is a hash that is used to prove the integrity of the wireless data.

  C. The key entered is based on the Diffie-Hellman method.

  D. The key is an RSA key used to encrypt the wireless data.

  Correct Answer: A

• Question 523:

  An NMAP scan of a server shows port 69 is open. What risk could this pose?

  A. Unauthenticated access

  B. Weak SSL version

  C. Cleartext login

  D. Web portal data leak

  Correct Answer: A

• Question 524:

  A tester has been using the msadc.pl attack script to execute arbitrary commands on a Windows NT4 web server. While it is effective, the tester finds it tedious to perform extended functions.

  On further research, the tester come across a perl script that runs the following msadc functions:system ("perl msadc.pl -h $host -C \"echo open $your >testfile\"");

  

  Which exploit is indicated by this script?

  A. A buffer overflow exploit

  B. A chained exploit

  C. A SQL injection exploit

  D. A denial of service exploit

  Correct Answer: B

• Question 525:

  Which of the following can the administrator do to verify that a tape backup can be recovered in its entirety?

  A. Restore a random file.

  B. Perform a full restore.

  C. Read the first 512 bytes of the tape.

  D. Read the last 512 bytes of the tape.

  Correct Answer: B

• Question 526:

  Which property ensures that a hash function will not produce the same hashed value for two different messages?

  A. Collision resistance

  B. Bit length

  C. Key strength

  D. Entropy

  Correct Answer: A

• Question 527:

  From the two screenshots below, which of the following is occurring?

  A. 10.0.0.253 is performing an IP scan against 10.0.0.0/24,10.0.0.252 is performing a port scan against

  10.0.0.2.

  B. 10.0.0.253 is performing an IP scan against 10.0.0.2,10.0.0.252 is performing a port scan against

  10.0.0.2.

  C. 10.0.0.2 is performing an IP scan against 10.0.0.0/24,10.0.0.252 is performing a port scan against

  10.0.0.2.

  D. 10.0.0.252 is performing an IP scan against 10.0.0.2,10.0.0.252 is performing a port scan against

  10.0.0.2.

  Correct Answer: A

• Question 528:

  Which of the following programming languages is most vulnerable to buffer overflow attacks?

  A. Perl

  B. C++

  C. Python

  D. Java

  Correct Answer: B

• Question 529:

  During a penetration test, a tester finds a target that is running MS SQL 2000 with default credentials. The tester assumes that the service is running with Local System account.

  How can this weakness be exploited to access the system?

  A. Using the Metasploit psexec module setting the SA / Admin credential

  B. Invoking the stored procedure xp_shell to spawn a Windows command shell

  C. Invoking the stored procedure cmd_shell to spawn a Windows command shell

  D. Invoking the stored procedure xp_cmdshell to spawn a Windows command shell

  Correct Answer: D

• Question 530:

  Which security strategy requires using several, varying methods to protect IT systems against attacks?

  A. Defense in depth

  B. Three-way handshake

  C. Covert channels

  D. Exponential backoff algorithm

  Correct Answer: A