ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50v12 All Questions

View all questions & answers for the 312-50v12 exam
Go to Exam

Exam 312-50v12 topic 1 question 60 discussion

Actual exam question from ECCouncil's 312-50v12
Question #: 60
Topic #: 1
[All 312-50v12 Questions]

While testing a web application in development, you notice that the web server does not properly ignore the “dot dot slash” (../) character string and instead returns the file listing of a folder higher up in the folder structure of the server.
What kind of attack is possible in this scenario?

  • A. Cross-site scripting
  • B. SQL injection
  • C. Denial of service
  • D. Directory traversal
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by eli117 at April 4, 2023, 6:16 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
insaniunt
4 months, 1 week ago
Selected Answer: D
In directory traversal attacks, attackers use the dot-dot-slash (../) sequence to access restricted directories outside the web server’s root directory. Attackers can use the trial-and-error method to navigate outside the root directory and access sensitive information in the system.
upvoted 3 times
...
sudowhoami
6 months ago
Selected Answer: D
Exam Hint ../ = Directory Traversal
upvoted 2 times
...
581777a
8 months, 3 weeks ago
Selected Answer: D
D. Directory traversal
upvoted 2 times
...
Danieluuqo
1 year ago
Selected Answer: D
The answer is D
upvoted 2 times
...
eli117
1 year ago
Selected Answer: D
D. Directory traversal In a directory traversal attack, an attacker can access files and directories that are stored outside of the web root directory. The attacker can exploit this vulnerability to access sensitive information such as configuration files, password files, and other sensitive data.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago