200-201 · Question #253
200-201 Question #253: Real Exam Question with Answer & Explanation
Sign in or unlock 200-201 to reveal the answer and full explanation for question #253. The question stem and answer options stay visible for context.
Question
Refer to the exhibit. An engineer is analyzing a PCAP file after a recent breach. An engineer identified that the attacker used an aggressive ARP scan to scan the hosts and found web and SSH servers. Further analysis showed several SSH Server Banner and Key Exchange Initiations. The engineer cannot see the exact data being transmitted over an encrypted channel and cannot identify how the attacker gained access. How did the attacker gain access?
Options
- Aby using the buffer overflow in the URL catcher feature for SSH
- Bby using an SSH Tectia Server vulnerability to enable host-based authentication
- Cby using an SSH vulnerability to silently redirect connections to the local host
- Dby using brute force on the SSH service to gain access
Unlock 200-201 to see the answer
You've previewed enough free 200-201 questions. Unlock 200-201 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.