Curious about Actual Eccouncil Certified Application Security Engineer (312-96) Exam Questions?

Here are sample Eccouncil Certified Application Security Engineer (CASE) JAVA (312-96) Exam questions from real exam. You can get more Eccouncil Certified Application Security Engineer (312-96) Exam premium practice questions at TestInsights.

Page: 1 /
Total 47 questions

Want more questions? Get Premium Access.

Question 1

Oliver is a web server admin and wants to configure the Tomcat server in such a way that it should not serve index pages in the absence of welcome files. Which of the following settings in CATALINA_HOME/conf/ in web.xml will solve his problem?

A< servlet > < servlet-name > default < /servlet-name > < servlet-class > org.apache.catalina.servlets.DefaultServlet < /servlet-class > < init-param > < param-name > debug < /param-name > < param-value > 0 < /param-value > < /init-param > < init-param > < param-name > listings < /param-name > < param-value > false < /param-value > < /init-param > < load-on-startup > 1 < /load-on-startup > < servlet >

B< servlet > < servlet-name > default < /servlet-name > < servlet-class > org.apache.catalina.servlets.DefaultServlet < /servlet-class > < init-param > < param-name > debug < /param-name > < param-value > 0 < /param-value > < /init-param > < init-param > < param-name > listings < /param-name > < param-value > disable < /param-value> < /init-param > < load-on-startup > 1 < /load-on-startup> < /servlet >

C< servlet > < servlet-name > default < /servlet-name > < servlet-class > org.apache.catalina.servlets.DefaultServlet < /servlet-class > < init-param > < param-name > debug < /param-name>< param-value> 0 < /param value>< /init-param > < init-param > < param-name> listings < /param-name > < param-value > enable < /param-value > < /init-param > < load-on-startup> 1 < /load-on-startup > < /servlet >

D< servlet > < servlet-name > default < servlet-name > < servlet-class > org.apache.catalina.servlets.DefaultServlet < /servlet-class > < init-param > < param-name > debug < /param-name> < param-value > 0 < /param-value > < /init-param > < init-param > < param-name > listings < /param-name > < param-value > true < /param-value > < /init-param > < load-on-startup > l < /load-on-startup > < /servlet >

Correct : B

Options Selected by Other Users:

Mark Question:

Start a Discussions

Submit Your Answer:

0 / 1500

Question 2

James is a Java developer working INFR INC. He has written Java code to open a file, read it line by line and display its content in the text editor. He wants to ensure that any unhandled exception raised by the code should automatically close the opened file stream. Which of the following exception handling block should he use for the above purpose?

ATry-Catch-Finally block

BTry-Catch block

CTry-With-Resources block

DTry-Catch-Resources block

Correct : C

Options Selected by Other Users:

Mark Question:

Start a Discussions

Submit Your Answer:

ATry-Catch-Finally block

BTry-Catch block

CTry-With-Resources block

DTry-Catch-Resources block

0 / 1500

Question 3

Which of the following can be derived from abuse cases to elicit security requirements for software system?

AMisuse cases

BData flow diagram

CUse cases

DSecurity use cases

Correct : D

Options Selected by Other Users:

Mark Question:

Start a Discussions

Submit Your Answer:

AMisuse cases

BData flow diagram

CUse cases

DSecurity use cases

0 / 1500

Question 4

Which of the following state management method works only for a sequence of dynamically generated forms?

ACookies

BSessions

CHidden Field

DURL-rewriting

Correct : C

Options Selected by Other Users:

Mark Question:

Start a Discussions

Submit Your Answer:

ACookies

BSessions

CHidden Field

DURL-rewriting

0 / 1500

Question 5

Thomas is not skilled in secure coding. He neither underwent secure coding training nor is aware of the consequences of insecure coding. One day, he wrote code as shown in the following screenshot. He passed 'false' parameter to setHttpOnly() method that may result in the existence of a certain type of vulnerability. Identify the attack that could exploit the vulnerability in the above case.

ADenial-of-Service attack

BClient-Side Scripts Attack

CSQL Injection Attack

DDirectory Traversal Attack

Correct : B

Options Selected by Other Users:

Mark Question:

Start a Discussions

Submit Your Answer:

ADenial-of-Service attack

BClient-Side Scripts Attack

CSQL Injection Attack

DDirectory Traversal Attack

0 / 1500

Page: 1 / 10
Total 47 questions

Unlock Full
312-96 Exam Features

In Just $49 You can Access

All Official Question Types
Interactive Web-Based Practice Test Software
No Installation or 3rd Party Software Required
Customize your practice sessions (Free Demo)
24/7 Customer Support

Get Full Access Now

Marked Questions
312-96 Exam

312-96 Exam Question 1
312-96 Exam Question 2
312-96 Exam Question 3
312-96 Exam Question 4
312-96 Exam Question 5

Download PDF File Demo

Try Web-Based Exam Practice Software Demo

Commenting

In order to participate in the comments you need to be logged-in.
You can sign-up or login