nerdexam
EC-Council

312-50V11 · Question #972

Stella, a professional hacker, performs an attack on web services by exploiting a vulnerability that provides additional routing information in the SOAP header to support asynchronous communication. T

The correct answer is B. WS-Address spoofing. WS-Address spoofing exploits WS-Addressing headers in SOAP messages to inject malicious routing directives, enabling attackers to redirect web service traffic across separate TCP connections for asynchronous communication abuse.

Hacking Web Applications

Question

Stella, a professional hacker, performs an attack on web services by exploiting a vulnerability that provides additional routing information in the SOAP header to support asynchronous communication. This further allows the transmission of web-service requests and response messages using different TCP connections. Which of the following attack techniques is used by Stella to compromise the web services?

Options

  • AXML injection
  • BWS-Address spoofing
  • CSOAPAction spoofing
  • DWeb services parsing attacks

How the community answered

(31 responses)
  • A
    3% (1)
  • B
    77% (24)
  • C
    6% (2)
  • D
    13% (4)

Why each option

WS-Address spoofing exploits WS-Addressing headers in SOAP messages to inject malicious routing directives, enabling attackers to redirect web service traffic across separate TCP connections for asynchronous communication abuse.

AXML injection

XML injection attacks target application-level input handling by inserting malicious XML constructs into data fields, not by manipulating SOAP routing headers for asynchronous message redirection.

BWS-Address spoofingCorrect

WS-Addressing is a W3C specification that embeds routing and endpoint reference information within SOAP headers to support asynchronous messaging, allowing requests and responses to traverse different TCP connections. Stella exploits this by spoofing those routing headers to redirect SOAP messages to attacker-controlled endpoints or manipulate message flow. This technique is specifically classified as WS-Address spoofing because it leverages the WS-Addressing extension to compromise web service communication.

CSOAPAction spoofing

SOAPAction spoofing manipulates the HTTP SOAPAction header to invoke unintended service operations or bypass security controls, but does not involve the routing information in SOAP headers that supports asynchronous multi-connection communication.

DWeb services parsing attacks

Web services parsing attacks exploit vulnerabilities in XML parsers such as XXE or recursive entity expansion, not the WS-Addressing routing metadata embedded in SOAP headers.

Concept tested: WS-Addressing SOAP header spoofing in web services

Source: https://www.w3.org/TR/ws-addr-core/

Topics

#WS-Address spoofing#SOAP header#web services attacks#XML routing

Community Discussion

No community discussion yet for this question.

Full 312-50V11 Practice