exam questions

Exam 350-701 All Questions

View all questions & answers for the 350-701 exam

Exam 350-701 topic 1 question 214 discussion

Actual exam question from Cisco's 350-701
Question #: 214
Topic #: 1
[All 350-701 Questions]

Which attack is preventable by Cisco ESA but not by the Cisco WSA?

  • A. SQL injection
  • B. phishing
  • C. buffer overflow
  • D. DoS
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
ddev3737
Highly Voted 2 years, 2 months ago
but also B. Phishing Cisco ESA (Email Security Appliance) and Cisco WSA (Web Security Appliance) are both security products that provide protection against a variety of network-based threats. However, ESA is designed specifically to protect against email-based threats such as spam, phishing and malware, while WSA is designed to protect against web-based threats such as SQL injection, buffer overflow, and DoS attacks. So, Cisco ESA can prevent phishing but Cisco WSA can't.
upvoted 8 times
...
MoII
Highly Voted 3 years, 4 months ago
I'd go with B becasue the question is about "Preventable" meaning user should not get the email in the first place, that's ESA's job..
upvoted 7 times
...
Swiz005
Most Recent 2 months, 2 weeks ago
Selected Answer: B
This should be B Cisco ESA (Email Security Appliance) - Cisco WSA (Web Security Appliance) has no business with emails
upvoted 2 times
...
kloug
5 months ago
Answer b
upvoted 1 times
...
masal
7 months, 1 week ago
from https://www.cisco.com/c/en/us/support/docs/security/web-security-appliance/117952-qanda-wsa-00.html WSA can prevent phishing attack. true answer is D.
upvoted 1 times
...
Premium_Pils
7 months, 2 weeks ago
D - "Cisco ESA Bounce Verification to avoid the Denial of Service DOS of your email infrastructure." https://community.cisco.com/t5/security-blogs/cisco-esa-bounce-verification-to-avoid-the-denial-of-service-dos/ba-p/4431574 Not B: WSA - "Web reputation filtering protects client devices from visiting potentially harmful websites that contain malware or phishing links."
upvoted 1 times
...
Stig_88
10 months, 3 weeks ago
b. Phishing. when an email came in, phishing already happens and WSA did not prevented it. Its the ESA which could prevent it from coming in. What WSA can prevent is when user clicks the link on the email, but that its not that phishing attack. the phishing attack starts when user received the phishing in his inbox.
upvoted 1 times
Stig_88
10 months, 3 weeks ago
Another thing to add here: Q: but not by the Cisco WSA When a web server is getting attacked by a DOS, can WSA not prevent it? I think it can. Maybe we are focusing more on email server and ignoring Web server that we are protecting as well. Nothing on the question states that it only considers email servers.
upvoted 1 times
...
...
XvidalX
1 year ago
Selected Answer: D
WSA PROTECT against pishing!! ESA protect againsd DOS because have RATE LIMIT configuration for connections https://www.cisco.com/c/en/us/support/docs/security/web-security-appliance/117952-qanda-wsa-00.html : Cisco Web Security Appliance (WSA) provides the industry's most comprehensive gateway defense against spyware and web-based malware. This includes everything from Adware (which causes the most supportability issues and consumes significant network resources) to more malicious threats such as Trojans, Browser Hijackers, Browser helper Objects, Phishing, Pharming, System Monitors, Keyloggers, Worms, etc.
upvoted 2 times
Pierre_Bouvier
1 month, 3 weeks ago
Cisco ESA is specifically designed to prevent phishing attacks, which primarily occur via email, whereas WSA (Web Security Appliance) focuses on web-based threats and does not provide phishing protection for emails. Why not D. DoS? While ESA does offer rate limiting to mitigate email-based DoS attacks, it's not a dedicated DoS prevention solution. Rate limiting helps reduce email-based DoS risks, but network-wide DoS attacks (like volumetric DDoS attacks) are typically handled by firewalls, IPS, or specialized DDoS mitigation solutions. WSA also has protections against DoS-like behaviors by limiting connections and scanning web traffic, but its main focus is not DoS prevention. So, while ESA can help mitigate DoS effects, phishing is the unique attack type that ESA prevents but WSA does not.
upvoted 1 times
...
...
mellohello
1 year, 1 month ago
Selected Answer: B
Phishing
upvoted 1 times
...
JavierAcuna
1 year, 11 months ago
The Aswer is the B
upvoted 1 times
...
itsklk
1 year, 11 months ago
Selected Answer: D
Question Does the Cisco Web Security Appliance (WSA) provide Malware/Spyware protection? Cisco Web Security Appliance (WSA) provides the industry's most comprehensive gateway defense against spyware and web-based malware. This includes everything from Adware (which causes the most supportability issues and consumes significant network resources) to more malicious threats such as Trojans, Browser Hijackers, Browser helper Objects, Phhttps://www.examtopics.com/discussions/cisco/view/64650-exam-350-701-topic-1-question-214-discussion/#ishing, Pharming, System Monitors, Keyloggers, Worms, etc.
upvoted 1 times
alexyozgat24
1 year, 10 months ago
its asking not by WSA ? so why are we having link for WSA?
upvoted 1 times
...
...
achille5
1 year, 11 months ago
Selected Answer: D
https://www.linkedin.com/pulse/you-using-cisco-wsa-security-appliance-vulnerable-dos-cyber-defence/
upvoted 1 times
...
rumble291
2 years, 1 month ago
Selected Answer: D
The ESA is a Transfer Agent therefore will limit mail flow to the actual email server. Therefore stopping a DoS attack.
upvoted 1 times
...
ddev3737
2 years, 2 months ago
What about answer A A. SQL injection: Cisco ESA can prevent SQL injection attacks by inspecting the payload of the incoming email messages and identifying any SQL injection attempts. However, Cisco WSA is focused on web traffic and may not have the same level of protection against this type of attack. B. Phishing: Both Cisco ESA and Cisco WSA can prevent phishing attacks by using reputation-based filtering, SSL inspection, and anti-phishing capabilities. C. Buffer overflow: Cisco ESA can prevent buffer overflow attacks by inspecting the payload of incoming email messages and identifying any buffer overflow attempts. However, Cisco WSA is focused on web traffic and may not have the same level of protection against this type of attack. D. DoS: Both Cisco ESA and Cisco WSA can prevent DoS attacks by using rate-limiting, access controls, and other security measures to prevent the attack from overwhelming the system.
upvoted 1 times
...
CCNP21
2 years, 2 months ago
Selected Answer: B
I believe B is the answer.
upvoted 1 times
...
Emlia1
2 years, 3 months ago
Selected Answer: B
B is correct
upvoted 1 times
...
intirt
2 years, 3 months ago
B is correct. ESA is email appliance, not firewall.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago