CertNexus ITS-110 Exam - Topic 5 Question 67 Discussion

Actual exam question for CertNexus's ITS-110 exam

Question #: 67
Topic #: 5

In order to successfully perform a man-in-the-middle (MITM) attack against a secure website, which of the following could be true?

AClient to server traffic must use Hypertext Transmission Protocol (HTTP)

BThe server must be vulnerable to malformed Uniform Resource Locator (URL) injection

CThe server must be using a deprecated version of Transport Layer Security (TLS)

DThe web server's X.509 certificate must be compromised

Show Suggested Answer

Suggested Answer: C

by Evangelina at Mar 06, 2026, 05:16 PM

Limited Time Offer

25%

Off

Get Premium ITS-110 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Erick

3 days ago

Wait, can you really pull off a MITM without a compromised cert? Seems off.

upvoted 0 times

...

Aretha

8 days ago

D) is a must for a successful MITM, compromised certs are a game changer.

upvoted 0 times

...

Ocie

13 days ago

I think C) is a big factor too, old TLS versions are risky.

upvoted 0 times

...

Leontine

19 days ago

A) is definitely true, HTTP is not secure.

upvoted 0 times

...

Isaac

24 days ago

I feel like option B is less likely, but I recall some scenarios where URL injection could be a factor in certain attacks.

upvoted 0 times

...

Justine

29 days ago

I'm leaning towards option D because if the X.509 certificate is compromised, it could definitely allow for a MITM attack, but I need to double-check that.

upvoted 0 times

...

Lettie

1 month ago

I remember practicing a question about TLS vulnerabilities, so option C could be a possibility if the server is using an outdated version.

upvoted 0 times

...

Billy

1 month ago

I think option A might be correct since MITM attacks often exploit unencrypted HTTP traffic, but I'm not entirely sure.

upvoted 0 times

...