Certified SOC Analyst (CSA) — Question 88

Identify the attack in which the attacker exploits a target system through publicly known but still unpatched vulnerabilities.

Answer options

• A. Slow DoS Attack
• B. DHCP Starvation
• C. Zero-Day Attack
• D. DNS Poisoning Attack

Correct answer: C

Explanation

The correct answer is C, Zero-Day Attack, which specifically refers to exploiting vulnerabilities that are known but not yet fixed. A Slow DoS Attack is aimed at overwhelming a system gradually, DHCP Starvation targets DHCP servers to exhaust IP address availability, and DNS Poisoning Attack manipulates DNS responses to redirect traffic, none of which involve unpatched vulnerabilities.