ECCouncil Certified Ethical Hacker Exam (CEHv13) 312-50v13 Question # 24 Topic 3 Discussion

ECCouncil Certified Ethical Hacker Exam (CEHv13) 312-50v13 Question # 24 Topic 3 Discussion

312-50v13 Exam Topic 3 Question 24 Discussion:
Question #: 24
Topic #: 3

During an attempt to perform an SQL injection attack, a certified ethical hacker is focusing on the

identification of database engine type by generating an ODBC error. The ethical hacker, after injecting various payloads, finds that the web application returns a standard, generic error message that does not reveal any detailed database information. Which of the following techniques would the hacker consider next to obtain useful information about the underlying database?


A.

Use the UNION operator to combine the result sets of two or more SELECT statements


B.

Attempt to compromise the system through OS-level command shell execution


C.

Try to insert a string value where a number is expected in the input field


D.

Utilize a blind injection technique that uses time delays or error signatures to extract information


Get Premium 312-50v13 Questions

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.