ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50v12 All Questions

View all questions & answers for the 312-50v12 exam
Go to Exam

Exam 312-50v12 topic 1 question 140 discussion

Actual exam question from ECCouncil's 312-50v12
Question #: 140
Topic #: 1
[All 312-50v12 Questions]

XYZ company recently discovered a potential vulnerability on their network, originating from misconfigurations. It was found that some of their host servers had enabled debugging functions and unknown users were granted administrative permissions. As a Certified Ethical Hacker, what would be the most potent risk associated with this misconfiguration?

  • A. An attacker may be able to inject a malicious DLL into the current running process
  • B. Weak encryption might be allowing man-in-the-middle attacks, leading to data tampering
  • C. Unauthorized users may perform privilege escalation using unnecessarily created accounts
  • D. An attacker may carry out a Denial-of-Service assault draining the resources of the server in the process
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by DarioReymag at Feb. 6, 2024, 10:38 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
lmourikis
Highly Voted 1 year, 5 months ago
I believe it's not C, as unknown users have already been granted administrative permissions. Also, there is nowhere mentioned that unnecessarily accounts have been created. Also, not B or D, as these type of attacks do not require gaining admin permissions on a system. The problem with unkown users getting admin perms is that they can change the code the server is running, eg by injecting a malicious DLL. So, it's A.
upvoted 6 times
...
agelbahri
Most Recent 5 months, 1 week ago
Selected Answer: C
CEH v12 page: 545 Host Misconfigurations
upvoted 1 times
...
yaolsaydi
6 months, 2 weeks ago
Selected Answer: C
Option A (DLL injection) is not directly related to the described misconfiguration. Option B (weak encryption) is not mentioned in the scenario. Option D (Denial-of-Service) is possible but less likely to be the most potent risk given the specific misconfigurations described.
upvoted 1 times
...
Rami1996
7 months ago
Selected Answer: A
An attacker may be able to inject a malicious DLL into the current running process
upvoted 1 times
...
jeejy
7 months, 3 weeks ago
It's C because, with administrative privileges, you can gain greater control over the network.
upvoted 1 times
...
blehbleh
8 months, 3 weeks ago
Selected Answer: A
C doesn't make sense, unknown users were already granted access. C states "C. Unauthorized users may perform privilege escalation using unnecessarily created accounts". it states may perform privilege escalation, its not may, the privileges are already there. There is no need for privilege escalation, it has already been granted. Additionally, it says using unnecessarily created accounts, no where in here does it say any accounts were created unnecessarily. B and D are both wrong. So I have to go with A.
upvoted 1 times
...
Binx
1 year ago
I believe the answer is A Yes, it is possible for an attacker to inject a malicious DLL through a server debugging tool, especially if debugging functions are enabled and not properly secured. Here’s how: Exploiting Debugging Functions: Debugging tools often have elevated privileges and direct access to the system memory and processes. If an attacker gains access to these debugging functions, they can manipulate the system in various ways, including injecting malicious code. DLL injection is a technique used to run malicious code within the address space of another process by loading a dynamic link library (DLL). If debugging functions are enabled, an attacker with access can use these tools to load their malicious DLL into a RUNNING PROCESS.
upvoted 1 times
...
f257c4e
1 year, 2 months ago
I think Is A, why bother in priv esc if the user has already administrative account?!?
upvoted 1 times
...
LordXander
1 year, 4 months ago
Selected Answer: C
Why bother with A when you can aleady have system access by using C. Also AI says C, the book says A & C, and C makes more sense...so C
upvoted 1 times
...
qtygbapjpesdayazko
1 year, 5 months ago
Selected Answer: A
Is C. Key words "unknown users were granted administrative permissions"
upvoted 2 times
qtygbapjpesdayazko
1 year, 5 months ago
IS C!!!!
upvoted 1 times
...
...
[Removed]
1 year, 6 months ago
Could someone please validate this information
upvoted 1 times
...
insaniunt
1 year, 6 months ago
Selected Answer: C
C. Unauthorized users may perform privilege escalation using unnecessarily created accounts
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel