NSE4 · Question #237
NSE4 Question #237: Real Exam Question with Answer & Explanation
Sign in or unlock NSE4 to reveal the answer and full explanation for question #237. The question stem and answer options stay visible for context.
Question
An administrator is examining the attack logs and notices the following entry: type=ips subtype=signature pri=alert vd=root serial=1995 attack_id=103022611 src=69.45.64.22 dst=192.168.1.100 src_port=80 dst_port=4887 src_int=wlan dst_int=internal status=detectedproto=6 service=4887/tcp user=N/A group=N/A msg=web_client: IE.IFRAME.BufferOverflow.B Based on the information displayed in this entry, which of the following statements are correct? (Select all that apply.)
Options
- AThis is an HTTP server attack.
- BThe attack was detected and blocked by the FortiGate unit.
- CThe attack was against a FortiGate unit at the 192.168.1.100 IP address.
- DThe attack was detected and passed by the FortiGate unit.
Unlock NSE4 to see the answer
You've previewed enough free NSE4 questions. Unlock NSE4 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.