New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Eccouncil 312-96 Exam - Topic 1 Question 8 Discussion

Actual exam question for Eccouncil's 312-96 exam
Question #: 8
Topic #: 1
[All 312-96 Questions]

In a certain website, a secure login feature is designed to prevent brute-force attack by implementing account lockout mechanism. The account will automatically be locked after five failed attempts. This feature will not allow the users to login to the website until their account is unlocked. However, there is a possibility that this security feature can be abused to perform __________ attack.

Show Suggested Answer Hide Answer
Suggested Answer: D

by Ressie at Aug 31, 2023, 09:27 AM

Limited Time Offer

25%

Off

Get Premium 312-96 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Glory
3 months ago
Five attempts seem reasonable, but still risky.
upvoted 0 times
...
Nathan
3 months ago
I think it's more about Broken Authentication, though.
upvoted 0 times
...
Daren
4 months ago
Wait, how does that even work? Sounds sketchy.
upvoted 0 times
...
Theodora
4 months ago
Totally agree, locking accounts can be exploited!
upvoted 0 times
...
Lennie
4 months ago
This could lead to a Denial-of-Service attack.
upvoted 0 times
...
Justa
4 months ago
I feel like we practiced a similar question, and it was about how account lockouts can be exploited. Denial-of-Service seems like the best fit here.
upvoted 0 times
...
Bernadine
4 months ago
Denial-of-Service sounds right to me. If an attacker locks out users, it could prevent legitimate access.
upvoted 0 times
...
Jillian
5 months ago
I think it might be broken authentication, but I'm not entirely sure. It seems like there could be multiple angles to this question.
upvoted 0 times
...
Lucy
5 months ago
I remember discussing how account lockout can lead to denial-of-service attacks, especially if someone locks out multiple accounts.
upvoted 0 times
...
Gerald
5 months ago
This seems like a tricky one. I'll need to think carefully about how the account lockout mechanism could be abused.Javier: Hmm, I'm a bit confused on this one. I'll have to review the different types of attacks and see which one fits best.Emily: Okay, I think I've got an idea. The account lockout feature could potentially be used to perform a denial-of-service attack.Michael: Ah, I see what they're getting at. The answer must be option D, Denial-of-Service.
upvoted 0 times
...
Carol
5 months ago
Ah, I see what they're getting at. The answer must be option D, Denial-of-Service.
upvoted 0 times
...
Nickie
5 months ago
Okay, I think I've got an idea. The account lockout feature could potentially be used to perform a denial-of-service attack.
upvoted 0 times
...
Latonia
5 months ago
Hmm, I'm a bit confused on this one. I'll have to review the different types of attacks and see which one fits best.
upvoted 0 times
...
Lettie
5 months ago
This seems like a tricky one. I'll need to think carefully about how the account lockout mechanism could be abused.
upvoted 0 times
...
Virgilio
5 months ago
Ah, I see the ANOVA table now. The value of (12) should be one of the numbers listed, I just need to match it up with the correct option.
upvoted 0 times
...
Enola
5 months ago
This one seems tricky, but I think I can figure it out. Let me think through the DITSCAP/NIACAP model phases and see which one matches the description.
upvoted 0 times
...

Save Cancel