312-50V11 · Question #278
Which of the following techniques does a vulnerability scanner use in order to detect a vulnerability on a target service?
The correct answer is D. Analyzing service response. Vulnerability scanners detect vulnerabilities by sending crafted probes to target services and then analyzing the responses to match against known vulnerability signatures.
Question
Which of the following techniques does a vulnerability scanner use in order to detect a vulnerability on a target service?
Options
- APort scanning
- BBanner grabbing
- CInjecting arbitrary data
- DAnalyzing service response
How the community answered
(48 responses)- A4% (2)
- B4% (2)
- C2% (1)
- D90% (43)
Why each option
Vulnerability scanners detect vulnerabilities by sending crafted probes to target services and then analyzing the responses to match against known vulnerability signatures.
Port scanning identifies open ports and running services but does not itself determine whether a vulnerability exists on those services.
Banner grabbing retrieves service version information and is a preliminary reconnaissance step, but it is not the mechanism by which vulnerabilities are confirmed.
Injecting arbitrary data describes fuzzing or active exploitation techniques used in penetration testing, not the standard passive detection approach of vulnerability scanners.
Analyzing service responses is the core detection mechanism of a vulnerability scanner - it sends specific requests and compares responses against a database of known vulnerable behaviors, error messages, or version indicators. This allows the scanner to identify whether a service is susceptible to a known CVE without necessarily exploiting it. The response analysis differentiates a vulnerability scanner from simpler reconnaissance tools.
Concept tested: Vulnerability scanner detection methodology
Source: https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-115.pdf
Topics
Community Discussion
No community discussion yet for this question.