ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50v11 All Questions

View all questions & answers for the 312-50v11 exam
Go to Exam

Exam 312-50v11 topic 1 question 39 discussion

Actual exam question from ECCouncil's 312-50v11
Question #: 39
Topic #: 1
[All 312-50v11 Questions]

Scenario:
1. Victim opens the attacker's web site.
2. Attacker sets up a web site which contains interesting and attractive content like 'Do you want to make $1000 in a day?'.
3. Victim clicks to the interesting and attractive content URL.
4. Attacker creates a transparent 'iframe' in front of the URL which the victim attempts to click, so the victim thinks that he/she clicks on the 'Do you want to make
$1000 in a day?' URL but actually he/she clicks on the content or URL that exists in the transparent 'iframe' which is setup by the attacker.
What is the name of the attack which is mentioned in the scenario?

  • A. Session Fixation
  • B. HTML Injection
  • C. HTTP Parameter Pollution
  • D. Clickjacking Attack
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by ripple at June 2, 2021, 8:01 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ripple
Highly Voted 2 years, 1 month ago
D: Textbook Clickjacking attack by overlaying a malicious layer atop seemingly legitimate content.
upvoted 6 times
...
kiki533
Most Recent 8 months, 1 week ago
Selected Answer: D
Definitely ClickJacking
upvoted 3 times
...
Daniel8660
8 months, 3 weeks ago
Selected Answer: D
Other Web Application Threats - Clickjacking Attack In clickjacking, the attacker loads the target website inside a low opacity(不透明) iframe. Then, the attacker designs a page such that all the clickable items such as buttons are positioned exactly as on the selected target website. When the victim clicks on the invisible elements, the attacker performs various malicious actions. (P.1817/1801)
upvoted 3 times
...
KruHacker01
1 year, 5 months ago
Correct answer is D: In clickjacking, the attacker loads the target website inside a low opacity iframe. Then, the attacker designs a page such that all the clickable items such as buttons are positioned exactly as on the selected target website. When the victim clicks on the invisible elements, the attacker performs various malicious actions (Taking from ECCouncil CEHv11 page 1772).
upvoted 2 times
...
Novmejst
1 year, 6 months ago
D. Clickjacking Attack
upvoted 2 times
...
Deeroo
1 year, 7 months ago
Correct, clickjacking is an attack that tricks a user into clicking a webpage element which is invisible or disguised as another element.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel