1_3_2 Section 1 – Attacks, Threats, and Vulnerabilities - 1.3 – Application Attacks - Cross-site Scripting

Questions and Answers

What is cross-site scripting often abbreviated as?

• XST
• CSS
• XSS (correct)
• XTS

Why is cross-site scripting referred to as 'cross-site'?

• It allows websites to share user input fields
• It enables websites to communicate with each other directly
• Due to the sharing of information between different websites (correct)
• Because it involves sharing style information across websites

What is a major concern with cross-site scripting for web-based applications?

• Displaying incorrect style sheets
• Slow website performance
• Excessive browser caching issues
• Information leakage to attackers (correct)

Which scripting language is commonly exploited in cross-site scripting attacks?

JavaScript (D)

What distinguishes a non-persistent cross-site scripting attack?

It is also known as a reflected attack (D)

Why is preventing cross-site scripting important for developers of web-based applications?

To safeguard user data and prevent potential exploits (D)

What kind of link does the attacker need the victim to click in a reflective cross-site scripting attack?

A specially-crafted link with malicious scripts embedded within (A)

How does an attacker encourage the victim to click the malicious link in a reflective cross-site scripting attack?

By using social engineering tactics (B)

What information can an attacker gather from a victim's machine in a reflective cross-site scripting attack?

User credentials (B)

What issue did the individual face with the login token and session ID?

The token never expired (D)

What is the purpose of embedding malicious scripts in a reflected cross-site scripting attack?

To steal session IDs and personal information (A)

How could an attacker gain access to a user's account details on the Subaru website?

By gaining access to the authentication token (D)

How does a stored cross-site scripting attack differ from a reflective one?

It affects anyone visiting the infected page (D)

In a stored cross-site scripting attack, where is the malicious script typically embedded?

Within messages or forum posts on websites (C)

What vulnerability did the Subaru website have in one of its input fields?

Cross-site scripting vulnerability (D)

What happens when someone interacts with a page infected by a stored cross-site scripting attack?

They unknowingly run the malicious script on their local machine (A)

Why does the text advise against clicking links in emails?

To prevent malware from being downloaded (C)

How did Aaron Guzman discover a vulnerability on the Subaru website in June 2017?

By accident while browsing the website (C)

What is suggested as a practical alternative to disabling JavaScript entirely?

Installing a browser extension or security tool for JavaScript management (D)

For developers, what practice is recommended to prevent cross-site scripting vulnerabilities on their websites?

Validating all fields on the website (C)

What information was given to Aaron Guzman when he logged into the Subaru website?

Session information and a token (D)

What is the potential consequence if an attacker gains access to session ID information?

Ability to authenticate as the victim on websites without credentials (B)

What is cross-site scripting commonly abbreviated as?

XSS (A)

Why is it important for developers to prevent cross-site scripting vulnerabilities in web-based applications?

To prevent attackers from gathering user information (A)

What type of vulnerability is a non-persistent or reflected cross-site scripting attack?

Persistent cross-site scripting (D)

Which scripting language is commonly exploited in cross-site scripting attacks?

JavaScript (A)

Where was the original association made that led to the naming of cross-site scripting?

In browser vulnerabilities (A)

What makes JavaScript an important tool for both legitimate and malicious purposes in web browsing?

Its potential for automation and added functionality (B)

What was the consequence of the login token never expiring for the user?

Automatic authentication without re-entering credentials (B)

What risk did the user face due to the unexpiring authentication token?

Potential unauthorized access to account details (B)

How could an attacker gain access to the victim's car online capabilities?

Add their email address to the victim's car through a security vulnerability (A)

Why does the text recommend against clicking links in emails?

To avoid hidden malicious information in the links (D)

What is suggested as a more practical alternative to disabling JavaScript entirely?

Using browser extensions or security tools to manage JavaScript usage (D)

What is recommended for developers to prevent cross-site scripting vulnerabilities on their websites?

Validating all fields on a website (A)

What is the main method used by an attacker to encourage a victim to click and trigger a reflective cross-site scripting attack?

Sending an email with a specially-crafted link (C)

In a stored cross-site scripting attack, where is the malicious script typically embedded?

Within a post or message on a website (B)

What type of information is usually obtained by an attacker in a reflective cross-site scripting attack?

Session IDs and user credentials (B)

Why did the text mention that attackers often don't display alerts on the victim's workstation in cross-site scripting attacks?

To ensure the victim interacts with the alert (D)

What distinguishes a stored cross-site scripting attack from its reflective counterpart?

Stored attacks impact all visitors of a webpage (B)

How can a stored cross-site scripting attack quickly propagate across social media platforms?

By embedding malicious scripts in shared posts or messages (B)

What type of field in a web application is often exploited in cross-site scripting attacks?

Text input fields like search bars or forum posts (C)

What could an attacker potentially gain access to if they successfully exploit a reflective cross-site scripting attack?

Session ID information and user credentials (C)