GAQM Exam CPEH-001 Topic 6 Question 30 Discussion

Actual exam question for GAQM's CPEH-001 exam

Question #: 30
Topic #: 6

Bill has successfully executed a buffer overflow against a Windows IIS web server. He has been able to spawn an interactive shell and plans to deface the main web page. He first attempts to use the ''Echo'' command to simply overwrite index.html and remains unsuccessful. He then attempts to delete the page and achieves no progress. Finally, he tries to overwrite it with another page again in vain. What is the probable cause of Bill's problem?

AThe system is a honeypot.

BThere is a problem with the shell and he needs to run the attack again.

CYou cannot use a buffer overflow to deface a web page.

DThe HTML file has permissions of ready only.

Show Suggested Answer

Suggested Answer: D

The question states that Bill had been able to spawn an interactive shell.By this statement we can tell that the buffer overflow and its corresponding code was enough to spawn a shell. Any shell should make it possible to change the webpage.So we either don't have sufficient privilege to change the webpage (answer D) or it's a honeypot (answer A). We think the preferred answer is D

by Iluminada at May 05, 2022, 01:29 AM

Limited Time Offer

25%

Off

Get Premium CPEH-001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!