Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

GAQM Exam CFA-001 Topic 4 Question 107 Discussion

Actual exam question for GAQM's CFA-001 exam
Question #: 107
Topic #: 4
[All CFA-001 Questions]

A system with a simple logging mechanism has not been given much attention during development, this system is now being targeted by attackers, if the attacker wants to perform a new line injection attack, what will he/she inject into the log file?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Mireya at May 02, 2025, 08:57 AM

Limited Time Offer

25%

Off

Get Premium CFA-001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Golda
14 hours ago
I agree with Alex, plaintext seems like a safer option for the attacker.
upvoted 0 times
...
Alex
9 days ago
I think the attacker will inject plaintext to avoid detection.
upvoted 0 times
...
Anglea
16 days ago
Option C all the way! Gotta love those multiple pipe characters. It's like seasoning for your log file, am I right?
upvoted 0 times
Evan
2 days ago
B) Single pipe character
upvoted 0 times
...
Denise
6 days ago
A) Plaintext
upvoted 0 times
...
Cortney
13 days ago
B) Single pipe character
upvoted 0 times
...
Bulah
14 days ago
A) Plaintext
upvoted 0 times
...
...
Genevieve
26 days ago
I disagree, I believe the attacker will inject HTML tags.
upvoted 0 times
...
Velda
29 days ago
Ah, the age-old new line injection question. Option C is the way to go, my friend. Multiple pipe characters are the hackers' weapon of choice.
upvoted 0 times
Minna
5 days ago
That's correct! Multiple pipe characters can be used to perform a new line injection attack.
upvoted 0 times
...
Leonida
13 days ago
Option C) Multiple pipe characters
upvoted 0 times
...
...
Julian
1 months ago
Hmm, this one's tricky. I'm leaning towards option D, just to spice things up a bit. Inject some HTML tags, make the log file more interesting, you know?
upvoted 0 times
...
Lavonda
1 months ago
I think the attacker will inject multiple pipe characters.
upvoted 0 times
...
Willow
1 months ago
I'm going with option A. Plaintext is the way to go, keep it simple and straightforward.
upvoted 0 times
Jolene
14 days ago
A: I think the attacker would inject multiple pipe characters.
upvoted 0 times
...
...
Laurel
1 months ago
Definitely option C. Multiple pipe characters are a classic for new line injection attacks. This is a textbook example.
upvoted 0 times
Ethan
2 days ago
Yes, we should definitely prioritize securing our logging mechanisms to prevent attacks like this.
upvoted 0 times
...
Vallie
14 days ago
It's important to always be aware of potential vulnerabilities like this in our systems.
upvoted 0 times
...
Anglea
29 days ago
I agree, multiple pipe characters are commonly used for new line injection attacks.
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77