RDP Security Exposures | CompTIA Security+ SY0-601 Exam

Common Security Exposures Caused by Misconfigured RDP

Prev Question Next Question

Question

An employee uses RDP to connect back to the office network.

If RDP is misconfigured, which of the following security exposures would this lead to?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

D.

Remote Desktop Protocol (RDP) is a protocol used by Microsoft Windows to allow remote access to a desktop or server computer over a network. If RDP is misconfigured, it can lead to security exposures that can compromise the confidentiality, integrity, and availability of the network.

Option A: A virus on the administrator's desktop would be able to sniff the administrator's username and password. This is incorrect because a virus on the administrator's desktop would not be able to sniff the administrator's username and password if RDP is misconfigured.

Option B: Result in an attacker being able to phish the employee's username and password. This is incorrect because phishing is a social engineering attack that relies on tricking users into revealing their login credentials or other sensitive information. RDP misconfiguration alone does not enable phishing.

Option C: A social engineering attack could occur, resulting in the employee's password being extracted. This is incorrect because RDP misconfiguration alone does not enable social engineering attacks. Social engineering attacks involve tricking or manipulating people into divulging sensitive information, which is not related to RDP.

Option D: A man in the middle attack could occur, resulting in the employee's username and password being captured. This is the correct answer. A man-in-the-middle (MITM) attack occurs when an attacker intercepts communication between two parties and captures sensitive information. If RDP is misconfigured, an attacker could potentially intercept the traffic between the employee's computer and the office network, capture the employee's login credentials, and use them to gain unauthorized access to the network.

In summary, if RDP is misconfigured, it could lead to a man-in-the-middle attack, which could result in an attacker capturing the employee's login credentials and gaining unauthorized access to the office network.