A security administrator notices that the log file of the company’s webserver contains suspicious entries:
Based on source code analysis, the analyst concludes that the login.php script is vulnerable to
A. command injection.
B. SQL injection.
C. directory traversal.
D. LDAP injection.
EC-Council Certified Ethical Hacker v11Free dumps for 312-50v11 in Printable PDF format.High quality PDF and software. VALID exam to help you pass. |
Question is is not incomplete:
Atacking a website means: SQL Injection
Command injection = Attack operative system.
Directory traversal = Attack operative system
LDAP Injection = Attack LDAP aplication.
The question seems incomplete.
You can eliminate C and D but a command injection could occur under circumstances.
But of course we go with the most correct answers so B is one.