Certified Ethical Hacker (CEH v12) — Question 86

SQL injection (SQLi) attacks attempt to inject SQL syntax into web requests, which may bypass authentication and allow attackers to access and/or modify data attached to a web application.
Which of the following SQLi types leverages a database server’s ability to make DNS requests to pass data to an attacker?

Answer options

• A. In-band SQLi
• B. Union-based SQLi
• C. Out-of-band SQLi
• D. Time-based blind SQLi

Correct answer: C

Explanation

The correct answer is C, Out-of-band SQLi, as it utilizes DNS or other external channels to send data to the attacker. In-band SQLi (A) and Union-based SQLi (B) are methods that retrieve data through the same channel as the attack, while Time-based blind SQLi (D) relies on time delays to infer information without direct data retrieval.