Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Eccouncil Exam 312-50 Topic 3 Question 73 Discussion

Actual exam question for Eccouncil's 312-50 exam
Question #: 73
Topic #: 3
[All 312-50 Questions]

Stella, a professional hacker, performs an attack on web services by exploiting a vulnerability that provides additional routing information in the SOAP header to support asynchronous communication. This further allows the transmission of web-service requests and response messages using different TCP connections. Which of the following attack techniques is used by Stella to compromise the web services?

Show Suggested Answer Hide Answer
Suggested Answer: C

by Lorrine at Aug 10, 2023, 07:16 PM

Limited Time Offer

25%

Off

Get Premium 312-50 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Gregg
1 months ago
Wow, these web service attacks sound like something out of a spy movie. I bet Stella has a lair with a bunch of hacking equipment and a cat named 'Meowster Hacker.'
upvoted 0 times
Ashleigh
3 days ago
C) SOAPAction spoofing
upvoted 0 times
...
Cassie
7 days ago
B) WS-Address spoofing
upvoted 0 times
...
Herschel
14 days ago
A) XML injection
upvoted 0 times
...
...
Michel
1 months ago
D) Web services parsing attacks makes the most sense to me. If the attacker is exploiting a vulnerability in the way the web service handles the SOAP header, that's probably a parsing-related issue.
upvoted 0 times
...
Carmen
1 months ago
I'm going with C) SOAPAction spoofing. It sounds like the attacker is manipulating the SOAP header, and that's a classic SOAPAction spoofing attack, right?
upvoted 0 times
Charlena
8 days ago
Actually, it's C) SOAPAction spoofing. The attacker is indeed manipulating the SOAP header to compromise the web services.
upvoted 0 times
...
Mari
23 days ago
I think it could also be WS-Address spoofing, where the attacker manipulates the WS-Address to redirect requests.
upvoted 0 times
...
Erasmo
1 months ago
Yes, you're correct! SOAPAction spoofing involves manipulating the SOAP header to deceive the web service.
upvoted 0 times
...
...
Eden
2 months ago
I'm not sure about this one. The question seems a bit too specific for a certification exam. Maybe they're trying to trick us with all these obscure web service attack techniques.
upvoted 0 times
Osvaldo
1 days ago
D) Web services parsing attacks
upvoted 0 times
...
Alfreda
4 days ago
C) SOAPAction spoofing
upvoted 0 times
...
Cory
7 days ago
B) WS-Address spoofing
upvoted 0 times
...
Dorsey
11 days ago
A) XML injection
upvoted 0 times
...
...
Frank
2 months ago
Based on the information provided, I believe the correct answer is B) WS-Address spoofing. The description mentions the attacker exploiting a vulnerability that allows for asynchronous communication, which points to the WS-Addressing protocol.
upvoted 0 times
...
Berry
2 months ago
XML injection could also be a possibility, as it involves injecting malicious code into XML data.
upvoted 0 times
...
Shay
2 months ago
I believe it could also be SOAPAction spoofing, as that allows manipulation of the SOAP header.
upvoted 0 times
...
Charisse
3 months ago
I think Stella used WS-Address spoofing to compromise the web services.
upvoted 0 times
...

Save Cancel
a