GSLC · Question #532
GSLC Question #532: Real Exam Question with Answer & Explanation
The correct answer is A. The attacker can exploit any protocol used to go into the internal network or intranet of the company. B. The attacker can perform a Zero Day attack by delivering a malicious payload that is not a part of the. DMZ protocol attacks allow exploitation of permitted protocols to reach internal networks and deliver zero-day payloads, but a dual-firewall DMZ prevents a first-firewall breach from directly exposing the internal network.
Question
Options
- AThe attacker can exploit any protocol used to go into the internal network or intranet of the company.
- BThe attacker can perform a Zero Day attack by delivering a malicious payload that is not a part of the
- CThe attacker can gain access to the Web server in a DMZ and exploit the database.
- DThe attacker managing to break the first firewall defense can access the internal network without
Explanation
DMZ protocol attacks allow exploitation of permitted protocols to reach internal networks and deliver zero-day payloads, but a dual-firewall DMZ prevents a first-firewall breach from directly exposing the internal network.
Common mistakes.
- C. Gaining access to a web server in the DMZ and exploiting the database describes a web application or injection attack vector, not a DMZ protocol attack specifically, so it does not represent a threat caused by protocol-level exploitation of the DMZ.
- D. In a dual-firewall DMZ architecture, successfully breaching the first firewall places the attacker only in the DMZ zone - a second independent firewall still separates the DMZ from the internal network, so the internal network is not directly accessible.
Concept tested. DMZ protocol attack threats in dual-firewall architecture
Reference. https://learn.microsoft.com/en-us/azure/architecture/reference-architectures/dmz/secure-vnet-dmz
Community Discussion
No community discussion yet for this question.