nerdexam
EC-Council

312-50V9 · Question #234

A network administrator discovers several unknown files in the root directory of his Linux FTP server. One of the files is a tarball, two are shell script files, and the third is a binary file is name

The correct answer is A. File system permissions. To upload files the user must have proper write file permissions.

System Hacking

Question

A network administrator discovers several unknown files in the root directory of his Linux FTP server. One of the files is a tarball, two are shell script files, and the third is a binary file is named "nc." The FTP server's access logs show that the anonymous user account logged in to the server, uploaded the files, and extracted the contents of the tarball and ran the script using a function provided by the FTP server's software. The ps command shows that the nc file is running as process, and the netstat command shows the nc process is listening on a network port. What kind of vulnerability must be present to make this remote attack possible?

Options

  • AFile system permissions
  • BPrivilege escalation
  • CDirectory traversal
  • DBrute force login

How the community answered

(62 responses)
  • A
    61% (38)
  • B
    13% (8)
  • C
    21% (13)
  • D
    5% (3)

Explanation

To upload files the user must have proper write file permissions.

Topics

#FTP anonymous access#file system permissions#netcat#privilege escalation

Community Discussion

No community discussion yet for this question.

Full 312-50V9 Practice