GAQM CPEH-001 Exam - Topic 6 Question 30 Discussion

Actual exam question for GAQM's CPEH-001 exam

Question #: 30
Topic #: 6

Bill has successfully executed a buffer overflow against a Windows IIS web server. He has been able to spawn an interactive shell and plans to deface the main web page. He first attempts to use the ''Echo'' command to simply overwrite index.html and remains unsuccessful. He then attempts to delete the page and achieves no progress. Finally, he tries to overwrite it with another page again in vain. What is the probable cause of Bill's problem?

AThe system is a honeypot.

BThere is a problem with the shell and he needs to run the attack again.

CYou cannot use a buffer overflow to deface a web page.

DThe HTML file has permissions of ready only.

Show Suggested Answer

Suggested Answer: D

The question states that Bill had been able to spawn an interactive shell.By this statement we can tell that the buffer overflow and its corresponding code was enough to spawn a shell. Any shell should make it possible to change the webpage.So we either don't have sufficient privilege to change the webpage (answer D) or it's a honeypot (answer A). We think the preferred answer is D

by Iluminada at May 05, 2022, 01:29 AM

Limited Time Offer

25%

Off

Get Premium CPEH-001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Glory

4 months ago

He probably needs to check the shell setup first.

upvoted 0 times

...

Mable

4 months ago

Wait, can you really not overwrite files with a buffer overflow?

upvoted 0 times

...

Evan

4 months ago

You can definitely use a buffer overflow for that!

upvoted 0 times

...

Ramonita

4 months ago

I think it's just a permissions issue.

upvoted 0 times

...

Valentin

5 months ago

Sounds like a honeypot to me.

upvoted 0 times

...

Alisha

5 months ago

I feel like I’ve seen a question like this before, and it was about permissions being set to read-only. That could definitely be the issue.

upvoted 0 times

...

Detra

5 months ago

I’m not sure, but I think if the shell isn’t functioning properly, he might need to re-establish it before trying again.

upvoted 0 times

...

Pauline

5 months ago

I remember reading that file permissions can really mess up attempts to overwrite files. Maybe that's what's happening here?

upvoted 0 times

...

Elza

5 months ago

I thought buffer overflows could lead to defacing pages, but now I’m questioning if there’s a limitation on what can be done afterward.

upvoted 0 times

...

Dana

5 months ago

I've learned about this in class, so I think I can answer this. An upstream project has more build steps than a downstream project.

upvoted 0 times

...

Lili

5 months ago

Based on my understanding, I believe the correct answer is B - only the Compliance Manager can modify controls in the draft state. I'll double-check that before submitting.

upvoted 0 times

...

Dick

5 months ago

This seems like a tricky one. I'll need to think through the network topology and project relationships carefully.

upvoted 0 times

...