Question 669 of 730 from exam SY0-601: CompTIA Security+

Question 669 of 730 from exam SY0-601: CompTIA Security+

Prev Question Next Question

Question

During an incident response, a security analyst observes the following log entry on the web server:

GET http: //www.companysite.com/product_info.php?show=../../../../etc/password HTTP/1.1 Host: www.companysite.com

Which of the following BEST describes the type of attack the analyst is experiencing?

A.

SQL injection B.

Cross-site scripting C.

Pass-the-hash D.

Directory traversal.

D.

Explanations

During an incident response, a security analyst observes the following log entry on the web server:

GET http: //www.companysite.com/product_info.php?show=../../../../etc/password HTTP/1.1 Host: www.companysite.com

Which of the following BEST describes the type of attack the analyst is experiencing?

A.

SQL injection

B.

Cross-site scripting

C.

Pass-the-hash

D.

Directory traversal.

D.

Prev Question Next Question