100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached 4.2 TrustPilot
logo-home
Previously searched by you
Previously searched by you
logo
To add items to your wishlist, you must be logged in
Exam (elaborations)

C836/D430 WGU Fundamentals of Information Security QUESTIONS WITH ANSWERS

Rating
-
Sold
-
Pages
36
Grade
A+
Uploaded on
03-09-2025
Written in
2025/2026

C836/D430 WGU Fundamentals of Information Security QUESTIONS WITH ANSWERS

Institution
Western Governors University
Course
C836











Whoops! We can’t load your doc right now. Try again or contact support.
Report Copyright Violation

Written for

Institution
Western Governors University
Course
C836
All documents for this subject (11)

Document information

Uploaded on
September 3, 2025
Number of pages
36
Written in
2025/2026
Type
Exam (elaborations)
Contains
Questions & answers

Subjects

  • c836d430 wgu fundamentals of information security

Content preview

C836/D430 WGU Fundamentals of |\ |\ |\ |\




Information Security QUESTIONS WITH |\ |\ |\ |\




ANSWERS

bounds checking - CORRECT ANSWERS ✔✔to set a limit on the amount of
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



data we expect to receive to set aside storage for that data
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\




*required in most programming languages
|\ |\ |\ |\




* prevents buffer overflows
|\ |\ |\




race conditions - CORRECT ANSWERS ✔✔A type of software development
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\



vulnerability that occurs when multiple processes or multiple threads within
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\



a process control or share access to a particular resource, and the correct
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



handling of that resource depends on the proper ordering or timing of
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



transactions



input validation - CORRECT ANSWERS ✔✔a type of attack that can occur
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



when we fail to validate the input to our applications or take steps to filter
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



out unexpected or undesirable content
|\ |\ |\ |\




format string attack - CORRECT ANSWERS ✔✔a type of input validation
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



attacks in which certain print functions within a programming language can
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



be used to manipulate or view the internal memory of an application
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\

,authentication attack - CORRECT ANSWERS ✔✔A type of attack that can
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



occur when we fail to use strong authentication mechanisms for our
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



applications



authorization attack - CORRECT ANSWERS ✔✔A type of attack that can
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



occur when we fail to use authorization best practices for our applications
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\




cryptographic attack - CORRECT ANSWERS ✔✔A type of attack that can
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



occur when we fail to properly design our security mechanisms when
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



implementing cryptographic controls in our applications
|\ |\ |\ |\ |\




client-side attack - CORRECT ANSWERS ✔✔A type of attack that takes
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



advantage of weaknesses in the software loaded on client machines or one
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



that uses social engineering techniques to trick us into going along with the
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



attack



XSS (Cross Site Scripting) - CORRECT ANSWERS ✔✔an attack carried out
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



by placing code in the form of a scripting language into a web page or other
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



media that is interpreted by a client browser
|\ |\ |\ |\ |\ |\ |\




XSRF (cross-site request forgery) - CORRECT ANSWERS ✔✔an attack in
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\



which the attacker places a link on a web page in such a way that it will be
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



automatically executed to initiate a particular activity on another web page
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



or application where the user is currently authenticated
|\ |\ |\ |\ |\ |\ |\




SQL Injection Attack - CORRECT ANSWERS ✔✔Attacks against a web site
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



that take advantage of vulnerabilities in poorly coded SQL (a standard and
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\

,common database software application) applications in order to introduce
|\ |\ |\ |\ |\ |\ |\ |\ |\



malicious program code into a company's systems and networks.
|\ |\ |\ |\ |\ |\ |\ |\




clickjacking - CORRECT ANSWERS ✔✔An attack that takes advantage of
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\



the graphical display capabilities of our browser to trick us into clicking on
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



something we might not otherwise |\ |\ |\ |\




server-side attack - CORRECT ANSWERS ✔✔A type of attack on the web
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



server that can target vulnerabilities such as lack of input validation,
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



improper or inadequate permissions, or extraneous files left on the server
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



from the development process
|\ |\ |\




Protocol issues, unauthenticated access, arbitrary code execution, and
|\ |\ |\ |\ |\ |\ |\ |\



privilege escalation - CORRECT ANSWERS ✔✔Name the 4 main categories
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\



of database security issues
|\ |\ |\




web application analysis tool - CORRECT ANSWERS ✔✔A type of tool that
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



analyzes web pages or web-based applications and searches for common
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\



flaws such as XSS or SQL injection flaws, and improperly set permissions,
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



extraneous files, outdated software versions, and many more such items
|\ |\ |\ |\ |\ |\ |\ |\ |\




protocol issues - CORRECT ANSWERS ✔✔unauthenticated flaws in network
|\ |\ |\ |\ |\ |\ |\ |\



protocols, authenticated flaws in network protocols, flaws in authentication
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\



protocols

, arbitrary code execution - CORRECT ANSWERS ✔✔An attack that exploits
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\



an applications vulnerability into allowing the attacker to execute commands
|\ |\ |\ |\ |\ |\ |\ |\ |\



on a user's computer.
|\ |\ |\ |\




* arbitrary code execution in intrinsic or securable SQL elements
|\ |\ |\ |\ |\ |\ |\ |\ |\




Privilege Escalation - CORRECT ANSWERS ✔✔An attack that exploits a
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\



vulnerability in software to gain access to resources that the user normally |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



would be restricted from accessing. |\ |\ |\ |\




* via SQL injection or local issues
|\ |\ |\ |\ |\ |\




validating user inputs - CORRECT ANSWERS ✔✔a security best practice for
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\



all software
|\ |\




* the most effective way of mitigating SQL injection attacks
|\ |\ |\ |\ |\ |\ |\ |\ |\




Nikto (and Wikto) - CORRECT ANSWERS ✔✔A web server analysis tool
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



that performs checks for many common server-side vulnerabilities & creates
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\



an index of all the files and directories it can see on the target web server (a
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



process known as spidering) |\ |\ |\




burp suite - CORRECT ANSWERS ✔✔A well-known GUI web analysis tool
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



that offers a free and professional version; the pro version includes advanced
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



tools for conducting more in-depth attacks
|\ |\ |\ |\ |\




fuzzer - CORRECT ANSWERS ✔✔A type of tool that works by bombarding
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



our applications with all manner of data and inputs from a wide variety of
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



sources, in the hope that we can cause the application to fail or to perform
|\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\ |\



in unexpected ways
|\ |\
$21.99
Get access to the full document:
100% satisfaction guarantee
Immediately available after payment
Both online and in PDF
No strings attached
Get to know the seller
Seller avatar
Reputation scores are based on the amount of documents a seller has sold for a fee and the reviews they have received for those documents. There are three levels: Bronze, Silver and Gold. The better the reputation, the more your can rely on the quality of the sellers work.
EXAMSTUDYPLUG
4.5
(230)

Also available in package deal

Thumbnail
Package deal
WGU C836 exam study pack
-
7 2025
$ 144.43 More info

Get to know the seller

Seller avatar
Reputation scores are based on the amount of documents a seller has sold for a fee and the reviews they have received for those documents. There are three levels: Bronze, Silver and Gold. The better the reputation, the more your can rely on the quality of the sellers work.
EXAMSTUDYPLUG Stanford University
View profile
Follow You need to be logged in order to follow users or courses
Sold
301
Member since
3 year
Number of followers
107
Documents
17723
Last sold
1 week ago
GRADE BUDDY

Welcome to My Page! Are you looking for high-quality study resources to ace your exams or better understand your coursework? You've come to the right place! I'm passionate about sharing my knowledge and helping students succeed academically. Here, you'll find a wide range of well-organized notes, study guides, and helpful materials across various subjects, including Maths ,nursig, Biology, History, etc.. Each resource is carefully crafted with detailed explanations, clear examples, and relevant key points to help simplify complex concepts. Whether you're preparing for a test, reviewing lectures, or need extra support, my resources are designed to make your learning experience smoother and more effective. Let me be a part of your academic journey, and feel free to reach out if you have any questions or need personalized assistance!

Read more Read less
4.5

230 reviews

5
155
4
50
3
13
2
5
1
7

Recently viewed by you

Thumbnail
Exam (elaborations)
WGU C836 Fundamentals of Information Security EXAM QUESTIONS WITH ANSWERS
-
2025
$ 21.49 More info
Thumbnail
Exam (elaborations)
DB Exam 2 with all Correct &100% Verified Answers| Actual Complete Exam| Already Graded A+ (Just Released)
-
2025
$ 17.49 More info
Thumbnail
Exam (elaborations)
NGN Comprehensive RN Practice Test 2026 – Updated Clinical Judgment Exam with Detailed Rationales Next Generation RN Comprehensive Predictor Study Guide – 50 High Level NCLEX Questions
-
2025
$ 25.49 More info
Thumbnail
Exam (elaborations)
Geriatric Nursing Pre-Test Questions. Geriatric-Nursing-Review-Questions- NUR6540
-
2025
£ 9.53 More info
Thumbnail
Exam (elaborations)
ACSM's Resources for the Exercise Physiologist A Practical Guide for the Health Fitness Professional, 3rd Edition Test Bank
-
2025
$ 18.99 More info
Thumbnail
Exam (elaborations)
SBVC DR. PAUL PSYCHOLOGY 100 NEWEST ACTUAL FINAL EXAM STUDY WITH COMPLETE QUESTIONBS AND ANSWERS/ VERIFIED/GRADED A+/
-
2025
$ 16.99 More info

Why students choose Stuvia

Created by fellow students, verified by reviews

Quality you can trust: written by students who passed their tests and reviewed by others who've used these notes.

Didn't get what you expected? Choose another document

No worries! You can instantly pick a different document that better fits what you're looking for.

Pay as you like, start learning right away

No subscription, no commitments. Pay the way you're used to via credit card and download your PDF document instantly.

Student with book image

“Bought, downloaded, and aced it. It really can be that simple.”

Alisha Student

Frequently asked questions