Exam PT0-001 topic 1 question 83 discussion

looks good to me

It was on the exam

A. and B. - According to Wikipedia, XST can be used to get cookies. Cookies can be exploited in session hijacking. "XST scripts exploit ActiveX, Flash, or any other controls that allow executing an HTTP TRACE request. The HTTP TRACE response includes all the HTTP headers, including authentication data and HTTP cookie contents, which are then available to the script. In combination with cross-domain access flaws in web browsers, the exploit can collect the cached credentials of any website, including those utilizing SSL. - https://en.wikipedia.org/wiki/Cross-site_tracing Cross-Site Tracing (XST): - https://owasp.org/www-community/attacks/Cross_Site_Tracing - https://capec.mitre.org/data/definitions/107.html Arbitrary code execution: - https://www.kb.cert.org/vuls/id/520827/

Answer is BD,because: A. Arbitrary code execution ---> OSVDB-:/dvwa/?-s B. Session hijacking ---> OSVDB-877 OSVDB-12184 C. SQL injection ---> OSVDB-:/dvwa/?-s D. Login credential brute-forcing ---> many OSVDB (dictionary and login page) E. Cross-site request forgery ---> OSVDB-:/dvwa/?-s

Going with A and B with this one based on the Screenshot

I don't see anything that indicates session hijacking, brute force I can see since there is a login page but I'd say the next one would be code execution since it appears the php source code can be viewed which "may allow command execution"