CISSP · Question #318
During examination of Internet history records, the following string occurs within a Unique Resource Locator (URL): What type of attack does this indicate?
The correct answer is B. Structured Query Language (SQL) injection. The question describes a malicious string embedded in a URL that indicates a SQL injection attack, where an attacker manipulates database queries through user-supplied input.
Question
During examination of Internet history records, the following string occurs within a Unique Resource Locator (URL):
What type of attack does this indicate?
Options
- ADirectory traversal
- BStructured Query Language (SQL) injection
- CCross-Site Scripting (XSS)
- DShellcode injection
How the community answered
(28 responses)- A4% (1)
- B71% (20)
- C7% (2)
- D18% (5)
Why each option
The question describes a malicious string embedded in a URL that indicates a SQL injection attack, where an attacker manipulates database queries through user-supplied input.
Directory traversal attacks are identified by sequences like '../' or '%2e%2e%2f' in URLs that attempt to navigate the file system, not by SQL syntax strings.
SQL injection attacks are commonly identified in URLs by the presence of SQL syntax such as single quotes, comment sequences (--), UNION SELECT statements, or Boolean logic (e.g., ' OR '1'='1) appended to query parameters. These strings attempt to manipulate backend database queries by injecting malicious SQL code through HTTP request parameters, which is a hallmark of SQL injection as catalogued by OWASP.
Cross-Site Scripting (XSS) attacks are identified by script-related strings in URLs such as '<script>', 'javascript:', or 'onerror=' tags intended to execute client-side code in a browser, not SQL syntax.
Shellcode injection involves binary or encoded machine code payloads designed to exploit memory vulnerabilities, not SQL command strings embedded in URL parameters.
Concept tested: Identifying SQL injection attack signatures in URLs
Source: https://owasp.org/www-community/attacks/SQL_Injection
Topics
Community Discussion
No community discussion yet for this question.