Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Eccouncil Exam 312-50 Topic 3 Question 73 Discussion

Actual exam question for Eccouncil's 312-50 exam
Question #: 73
Topic #: 3
[All 312-50 Questions]

Stella, a professional hacker, performs an attack on web services by exploiting a vulnerability that provides additional routing information in the SOAP header to support asynchronous communication. This further allows the transmission of web-service requests and response messages using different TCP connections. Which of the following attack techniques is used by Stella to compromise the web services?

Show Suggested Answer Hide Answer
Suggested Answer: C

by Lorrine at Aug 10, 2023, 07:16 PM

Limited Time Offer

25%

Off

Get Premium 312-50 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Gregg
4 days ago
Wow, these web service attacks sound like something out of a spy movie. I bet Stella has a lair with a bunch of hacking equipment and a cat named 'Meowster Hacker.'
upvoted 0 times
...
Michel
7 days ago
D) Web services parsing attacks makes the most sense to me. If the attacker is exploiting a vulnerability in the way the web service handles the SOAP header, that's probably a parsing-related issue.
upvoted 0 times
...
Carmen
11 days ago
I'm going with C) SOAPAction spoofing. It sounds like the attacker is manipulating the SOAP header, and that's a classic SOAPAction spoofing attack, right?
upvoted 0 times
Erasmo
5 hours ago
Yes, you're correct! SOAPAction spoofing involves manipulating the SOAP header to deceive the web service.
upvoted 0 times
...
...
Eden
22 days ago
I'm not sure about this one. The question seems a bit too specific for a certification exam. Maybe they're trying to trick us with all these obscure web service attack techniques.
upvoted 0 times
...
Frank
23 days ago
Based on the information provided, I believe the correct answer is B) WS-Address spoofing. The description mentions the attacker exploiting a vulnerability that allows for asynchronous communication, which points to the WS-Addressing protocol.
upvoted 0 times
...
Berry
1 months ago
XML injection could also be a possibility, as it involves injecting malicious code into XML data.
upvoted 0 times
...
Shay
1 months ago
I believe it could also be SOAPAction spoofing, as that allows manipulation of the SOAP header.
upvoted 0 times
...
Charisse
1 months ago
I think Stella used WS-Address spoofing to compromise the web services.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77
a