Here are all the actual test exam dumps for IT exams. Most people prepare for the actual exams with our test dumps to pass their exams. So it's critical to choose and actual test pdf to succeed.

Exam PT0-003 Topic 3 Question 128 Discussion

Actual exam question for CompTIA's PT0-003 exam
Question #: 128
Topic #: 3
auth=yYKGORbrpabgr842ajbvrpbptaui42342
When the tester logs in, the server sends only one Set-Cookie header, and the value is exactly the same as shown above. Which of the following vulnerabilities has the tester discovered?

Suggested Answer: C Vote an answer

Comprehensive and Detailed Explanation:
Session fixation occurs when an application accepts a session identifier provided by the client (or set before authentication) and continues to use that same identifier after the user authenticates. In this scenario the server issues the same cookie value both before and after login, indicating the session ID is set pre-authentication and not rotated/renewed on successful authentication - a classic session fixation vulnerability. An attacker could force or coerce a victim to use a known session ID, then log in and hijack the authenticated session.
Why not the others:
* A. JWT manipulation: Would involve JSON Web Tokens (signed tokens with predictable structure); the cookie shown has no JWT structure.
* B. Cookie poisoning: Usually refers to unauthorized modification of cookie contents to change application behavior - not the primary issue here.
* D. Collision attack: Cryptographic collision attacks are not relevant to identical session cookies before
/after login.
CompTIA PT0-003 Mapping:
* Domain 3.0 Attacks and Exploits - web application session management vulnerabilities (session fixation, improper session handling).

by Ada at Jul 08, 2026, 05:52 AM

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.