CompTIA Security+ SY0-701 Practice Test 8 By Mr. B

SQLi, or SQL Injection, is a security vulnerability that allows attackers to insert malicious SQL code into input fields, enabling them to execute unauthorized commands on a database. This makes SQLi the correct answer.

The correct choice indicates an SQL injection attempt by using 'OR '1' = '1'', which can bypass authentication. This technique exploits vulnerabilities in SQL queries to manipulate database access.

Cross-site scripting (XSS) attacks exploit the trust a user's browser has in a website by injecting a malicious script into a trusted site, which the browser then executes, allowing attackers to manipulate user data.

Firmware is a type of software specifically designed to be embedded into hardware chips, providing low-level control for the device. Unlike middleware or device drivers, firmware operates closely with the hardware.

EOL stands for 'End of Life', indicating that a product or service will no longer receive updates or security patches, increasing its vulnerability to attacks. This makes EOL the correct choice for the question.

The main vulnerability of legacy hardware is the lack of security updates and patches, making it susceptible to cyber threats. Without regular updates, these systems cannot defend against new vulnerabilities.

Resource reuse refers to a vulnerability in virtualization where resources allocated to one VM can be accessed by another VM due to improper isolation, leading to potential data breaches or compromises.

Jailbreaking is the term used to describe the process of removing software restrictions on iOS, allowing users to install unauthorized apps and customize their devices beyond Apple's limitations.

A zero-day attack targets vulnerabilities in software that are unknown to the developers. Since the developers have not yet released a fix, these attacks can be particularly damaging, making 'zero-day attack' the correct choice.

A RAT (Remote Access Trojan) allows unauthorized remote access to a compromised system, enabling attackers to control it from afar. APT (Advanced Persistent Threat) refers to a broader strategy, while MaaS (Malware as a Service) and PUP (Potentially Unwanted Program) do not specifically provide remote access.