ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50v12 All Questions

View all questions & answers for the 312-50v12 exam
Go to Exam

Exam 312-50v12 topic 1 question 136 discussion

Actual exam question from ECCouncil's 312-50v12
Question #: 136
Topic #: 1
[All 312-50v12 Questions]

You're the security manager for a tech company that uses a database to store sensitive customer data. You have implemented countermeasures against SQL injection attacks. Recently, you noticed some suspicious activities and suspect an attacker is using SQL injection techniques. The attacker is believed to use different forms of payloads in his SQL queries. In the case of a successful SQL injection attack, which of the following payloads would have the most significant impact?

  • A. UNION SELECT NULL, NULL, NULL -- : This payload manipulates the UNION SQL operator, enabling the attacker to retrieve data from different database tables
  • B. ' OR username LIKE '%': This payload uses the LIKE operator to search for a specific pattern in a column
  • C. ' OR '1'='l: This payload manipulates the WHERE clause of an SQL statement, allowing the attacker to view unauthorized data
  • D. ' OR 'a'='a; DROP TABLE members; --: This payload combines the manipulation of the WHERE clause with a destructive action, causing data loss
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by DarioReymag at Feb. 6, 2024, 10:38 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
insaniunt
Highly Voted 1 year ago
Selected Answer: D
The correct answer is D. This payload combines the manipulation of the WHERE clause with a destructive action, causing data loss. This is the most significant impact because it can result in the deletion of an entire table from the database, which may contain sensitive customer data. The other payloads only allow the attacker to view or retrieve data, but not to modify or delete it. Therefore, they have less impact than D.
upvoted 8 times
...
aklsjda
Most Recent 9 months, 3 weeks ago
The question didn't specify if there is a back up of the database, logically B&C are eliminated cuz "BRO". and A is eliminated because the attacker doe not want other tables data, so D is the answer (if database is deleted+no backup=DOOM!)
upvoted 1 times
...
calx5
12 months ago
Selected Answer: A
A and C = data leakage; A with multiple-data leakage, big impact. B = pattern only, not data D = No data leakage, it is just data loss with backup as recovery.
upvoted 2 times
insaniunt
11 months, 3 weeks ago
Payload D is indeed the most destructive among the options. It not only manipulates the WHERE clause for unauthorized data access but also includes a DROP TABLE statement, which can lead to the deletion of the "members" table, causing data loss.
upvoted 2 times
...
Lalo
11 months ago
Correct answer DDDDDDDDDDDDDDDDDDDDDDDDD. Assuming that the other tables have critical information. However, what if they are temporary tables without critical information (the question does not clarify whether they are tables with important information or not). In this type of questions you have to check if they cover ALL possible options. In this situation, if we assume that it is unimportant data, the SQL injection attack with the most significant impact is D
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel