GIAC Certified Incident Handler (GCIH) — Question 177

John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He finds that the We-are- secure server is vulnerable to attacks. As a countermeasure, he suggests that the Network Administrator should remove the IPP printing capability from the server. He is suggesting this as a countermeasure against __________.

Answer options

• A. IIS buffer overflow
• B. NetBIOS NULL session
• C. SNMP enumeration
• D. DNS zone transfer

Correct answer: A

Explanation

The correct answer is A, as disabling the IPP printing capability can help prevent exploitation of buffer overflow vulnerabilities in IIS. Options B, C, and D are not directly related to the IPP printing service and do not involve the same type of exploitation as buffer overflows.