Latest CEH-001 Practice Tests

Premium

CEH-001 Dumps - Full Mock Test

Certified Ethical Hacker (CEH)

878 Questions
120 MINUTES
2024-11-08 Updated

Full Access

QUESTION 66

- (Topic 1)
Bret is a web application administrator and has just read that there are a number of surprisingly common web application vulnerabilities that can be exploited by unsophisticated attackers with easily available tools on the Internet. He has also read that when an organization deploys a web application, they invite the world to send HTTP requests. Attacks buried in these requests sail past firewalls, filters, platform hardening, SSL, and IDS without notice because they are inside legal HTTP requests. Bret is determined to weed out vulnerabilities.
What are some of the common vulnerabilities in web applications that he should be concerned about?

A. Non-validated parameters, broken access control, broken account and session management, cross-site scripting and buffer overflows are just a few common vulnerabilities
B. Visible clear text passwords, anonymous user account set as default, missing latest security patch, no firewall filters set and no SSL configured are just a few common vulnerabilities
C. No SSL configured, anonymous user account set as default, missing latest security patch, no firewall filters set and an inattentive system administrator are just a few common vulnerabilities
D. No IDS configured, anonymous user account set as default, missing latest security patch, no firewall filters set and visible clear text passwords are just a few common vulnerabilities

Correct Answer: A

QUESTION 67

- (Topic 6)
MX record priority increases as the number increases. (True/False.

A. True
B. False

Correct Answer: B
The highest priority MX record has the lowest number.

QUESTION 68

- (Topic 3)
Low humidity in a data center can cause which of the following problems?

A. Heat
B. Corrosion
C. Static electricity
D. Airborne contamination

Correct Answer: C

QUESTION 69

- (Topic 8)
A program that defends against a port scanner will attempt to:

A. Sends back bogus data to the port scanner
B. Log a violation and recommend use of security-auditing tools
C. Limit access by the scanning system to publicly available ports only
D. Update a firewall rule in real time to prevent the port scan from being completed

Correct Answer: D

QUESTION 70

- (Topic 6)
You have initiated an active operating system fingerprinting attempt with nmap against a target system:
CEH-001 dumps exhibit
What operating system is the target host running based on the open ports shown above?

A. Windows XP
B. Windows 98 SE
C. Windows NT4 Server
D. Windows 2000 Server

Correct Answer: D
The system is reachable as an active directory domain controller (port 389, LDAP)