James, a hacker, identifies a vulnerability in a website. To exploit the vulnerability, he visits the login page and notes down the session ID that is Cross-site request forgery Session fixation attack Cookie tampering Parameter tampering

EC-Council: Computer Hacking Forensic Investigator(CHFI-V10)

Module 9 : Investigating Web Attacks

Questions available : 45 You are not logged in.
Please Login for track your learning progress

Q. No: 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 |

Go to Question No.

Question No 10

If you want to share the link of this question, please click here to "Copy Question Link" and share that generated link. Link from URL may change in future.

Bookmark this Question

QID: 273

James, a hacker, identifies a vulnerability in a website. To exploit the vulnerability, he visits the login page and notes down the session ID that is created. He appends this session ID to the login URL and
shares the link with a victim. Once the victim logs into the website using the shared URL, James reloads the web page (containing the URL with the session ID appended) and now, he can browse the
active session of the victim. Which attack did James successfully execute?

A: Cross-site request forgery

B: Session fixation attack

C: Cookie tampering

D: Parameter tampering

WELCOME TO ONLINE EXAM PREPARATION SYSTEM

Join Online Exam

Certification Examinations