SY0-701 · Question #583
SY0-701 Question #583: Real Exam Question with Answer & Explanation
The correct answer is D: Directory traversal. Directory traversal is correct because the ../../../../etc/passwd pattern uses repeated ../ sequences to navigate up the directory tree from the web root, attempting to reach /etc/passwd - a sensitive Unix file containing user account information. This is the textbook signature o
Question
A security administrator observed the following in a web server log while investigating an incident: "GET ../../../../etc/passwd" Which of the following attacks did the security administrator most likely see?
Options
- APrivilege escalation
- BCredential replay
- CBrute force
- DDirectory traversal
Explanation
Directory traversal is correct because the ../../../../etc/passwd pattern uses repeated ../ sequences to navigate up the directory tree from the web root, attempting to reach /etc/passwd - a sensitive Unix file containing user account information. This is the textbook signature of a path/directory traversal attack.
Why the distractors are wrong:
- A (Privilege escalation) involves gaining higher-level permissions within a system after access is obtained - there's no authentication or permission change happening here.
- B (Credential replay) involves reusing captured authentication tokens or credentials - no credentials are being replayed in this GET request.
- C (Brute force) involves systematically trying many combinations (passwords, keys) - this is a single, targeted request, not repeated guessing.
Memory tip: Think of ../ as "dot-dot-slash = going up one floor." When you see a string of ../../../../ in a URL, picture someone climbing up the directory staircase to break out of the web root jail and reach system files - that's traversal.
Topics
Community Discussion
No community discussion yet for this question.