Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Cisco Exam 350-701 Topic 7 Question 73 Discussion

Actual exam question for Cisco's 350-701 exam
Question #: 73
Topic #: 7
[All 350-701 Questions]

An organization has two systems in their DMZ that have an unencrypted link between them for communication.

The organization does not have a defined password policy and uses several default accounts on the systems.

The application used on those systems also have not gone through stringent code reviews. Which vulnerability

would help an attacker brute force their way into the systems?

Show Suggested Answer Hide Answer
Suggested Answer: C

by Devorah at Aug 04, 2023, 10:40 PM

Limited Time Offer

25%

Off

Get Premium 350-701 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Meghan
2 months ago
I bet the IT team responsible for this setup is sweating bullets right now. This is like a buffet for hackers. C) missing encryption is the way to go!
upvoted 0 times
Johnson
21 days ago
I hope they address these issues before it's too late.
upvoted 0 times
...
Lizbeth
1 months ago
They really need to tighten up their security measures.
upvoted 0 times
...
Mozell
1 months ago
Definitely, weak passwords would also make it easy for attackers.
upvoted 0 times
...
Erick
2 months ago
I agree, missing encryption is a huge vulnerability.
upvoted 0 times
...
...
Xenia
2 months ago
B) lack of input validation. Even if the other issues are present, proper input validation could help mitigate many attacks. Gotta cover all the bases, you know?
upvoted 0 times
...
Thurman
2 months ago
Haha, this is like a hacker's paradise! With no encryption, default accounts, and sloppy code reviews, it's like leaving the keys in the ignition and the doors unlocked. I'm going with C) missing encryption.
upvoted 0 times
...
Lucille
2 months ago
I think lack of input validation could also be a vulnerability, as it can allow attackers to inject malicious code into the systems.
upvoted 0 times
...
Lili
2 months ago
I'm going with A) weak passwords. If the organization doesn't have a password policy, chances are those default accounts have weak, easy-to-guess passwords. That's the low-hanging fruit for an attacker.
upvoted 0 times
Loreen
2 months ago
User 4: True, but if they have default accounts with weak passwords, that's a big risk.
upvoted 0 times
...
Leonor
2 months ago
User 3: Lack of input validation could also be a vulnerability.
upvoted 0 times
...
Stanton
2 months ago
User 2: Definitely, weak passwords are a common entry point for attackers.
upvoted 0 times
...
Shizue
2 months ago
User 1: A) weak passwords
upvoted 0 times
...
...
Cecil
2 months ago
I agree with Olene, weak passwords make it easier for attackers to guess and gain unauthorized access.
upvoted 0 times
...
Gilberto
2 months ago
The obvious answer is C) missing encryption. With unencrypted communication and default accounts, an attacker can easily brute-force their way in. This is like leaving the front door wide open!
upvoted 0 times
...
Olene
2 months ago
I think the vulnerability that would help an attacker brute force their way into the systems is weak passwords.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77