Certified Ethical Hacker (CEH v13) — Question 108

SQL injection (SQLi) attacks attempt to inject SQL syntax into web requests, which may bypass authentication and allow attackers to access and/or modify data attached to a web application.
Which of the following SQLi types leverages a database server’s ability to make DNS requests to pass data to an attacker?

Answer options

• A. In-band SQLi
• B. Union-based SQLi
• C. Out-of-band SQLi
• D. Time-based blind SQLi

Correct answer: C

Explanation

The correct answer is C, Out-of-band SQLi, which uses the database server's DNS request functionality to communicate with the attacker. In-band SQLi (A) and Union-based SQLi (B) do not leverage DNS requests for data exfiltration, and Time-based blind SQLi (D) is focused on timing attacks rather than DNS capabilities.