Skillset can help you prepare! Sign up for your free Skillset account and take the first steps towards your certification.
An attacker manipulates the user ID parameter in a web based application's URL in order to get access to another user's private data. Which type of attack is this?
vertical access control attack
horizontal access control attack
business logic access control attack
URL attack
If proper authorization procedures are missing, the attacker will get access to another user's private data by successfully executing a horizontal access control attack. Source: slide 14 in http://www.slideshare.net/stevil1224/a7-missing-functional-level-access-control-final
Train with Skillset and pass your certification exam. Faster. Guaranteed.
Study thousands of practice questions that organized by skills and ranked by difficulty.
Create a tailored training plan based on the knowledge you already possess.
Know when you’re ready for the high-stakes exam. Have the confidence that you will pass on your first attempt.