SANS SEC504: Hacker Tools, Techniques and Incident Handling — Question 10

John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He finds that the We-are- secure server is vulnerable to attacks. As a countermeasure, he suggests that the Network Administrator should remove the IPP printing capability from the server. He is suggesting this as a countermeasure against __________.

Answer options

• A. IIS buffer overflow
• B. NetBIOS NULL session
• C. SNMP enumeration
• D. DNS zone transfer

Correct answer: A

Explanation

The correct answer is A, as disabling IPP printing can help prevent potential exploitation of IIS buffer overflow vulnerabilities through improper input handling. The other options relate to different types of attacks that are not directly mitigated by removing IPP printing capabilities.