GAQM Exam CFA-001 Topic 4 Question 85 Discussion

Actual exam question for GAQM's CFA-001 exam

Question #: 85
Topic #: 4

Which of the following attacks allows an attacker to access restricted directories, including application source code, configuration and critical system files, and to execute commands outside of the web server's root directory?

AUnvalidated input

BParameter/form tampering

CDirectory traversal

DSecurity misconfiguration

Show Suggested Answer

Suggested Answer: B

by Edda at May 29, 2024, 09:49 AM

Limited Time Offer

25%

Off

Get Premium CFA-001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Elke

2 months ago

Ah, the good old directory traversal. The classic way to sneak past the web server's defenses and explore the hidden corners of the system. Time to see what secrets are lurking in those restricted directories.

upvoted 0 times

Shaquana

1 months ago

I've used directory traversal before, it's a powerful attack method.

upvoted 0 times

...

Shaquana

2 months ago

C) Directory traversal

upvoted 0 times

...

Cecil

2 months ago

Directory traversal, for sure. This is the ultimate way to get the goods on the application. I'll be browsing through their config files and source code faster than a cheetah chasing a gazelle.

upvoted 0 times

...

Andra

2 months ago

C'mon, this is a no-brainer. Directory traversal is the way to go if you want to access those juicy restricted directories. It's like having a backstage pass to the web server's dirty secrets.

upvoted 0 times