EC-Council
312-50V9 · Question #234
312-50V9 Question #234: Real Exam Question with Answer & Explanation
Sign in or unlock 312-50V9 to reveal the answer and full explanation for question #234. The question stem and answer options stay visible for context.
Question
A network administrator discovers several unknown files in the root directory of his Linux FTP server. One of the files is a tarball, two are shell script files, and the third is a binary file is named "nc." The FTP server's access logs show that the anonymous user account logged in to the server, uploaded the files, and extracted the contents of the tarball and ran the script using a function provided by the FTP server's software. The ps command shows that the nc file is running as process, and the netstat command shows the nc process is listening on a network port. What kind of vulnerability must be present to make this remote attack possible?
Options
- AFile system permissions
- BPrivilege escalation
- CDirectory traversal
- DBrute force login
Unlock 312-50V9 to see the answer
You've previewed enough free 312-50V9 questions. Unlock 312-50V9 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.