CompTIA CySA+ (CS0-002) — Question 349

A SIEM analyst receives an alert containing the following URL: http:/companywebsite.com/displayPicture?filenamE=../../../../etc/passwd
Which of the following BEST describes the attack?

Answer options

• A. Password spraying
• B. Buffer overflow
• C. Insecure object access
• D. Directory traversal

Correct answer: D

Explanation

The attack described in the URL is a Directory traversal attack, which aims to access files and directories stored outside the web root folder. Other options like Password spraying and Buffer overflow pertain to different types of vulnerabilities, while Insecure object access does not specifically address the path traversal attempt visible in the URL.