Certified Ethical Hacker (CEH v11) — Question 246

Firewalls are the software or hardware systems that are able to control and monitor the traffic coming in and out the target network based on pre-defined set of rules. Which of the following types of firewalls can protect against SQL injection attacks?

Answer options

• A. Data-driven firewall
• B. Packet firewall
• C. Web application firewall
• D. Stateful firewall

Correct answer: C

Explanation

The correct answer is C, as a Web application firewall is specifically designed to filter and monitor HTTP traffic to and from a web application, making it effective against SQL injection attacks. In contrast, a Data-driven firewall focuses on data usage, a Packet firewall examines packets for basic filtering, and a Stateful firewall tracks active connections but does not specifically protect against web application vulnerabilities like SQL injections.