An attacker enters the string 192.168.78.6;cat /etc/httpd/httpd.conf on a web application hosted on a Linux server. Which type of attack occurred?
- session hijacking
- redirect attack
- SQL injection
- command injection
Explanation: A command injection is an attack in which an attacker tries to execute OS commands that the attacker is not supposed to be able to execute on a system. In this case, the attacker tries to view the web server (httpd) configuration information.
Exam with this question: Ethical Hacker: Course Final Exam Answers
Please login or Register to submit your answer