During a penetration test, a tester finds a target that is running MS SQL 2000 with default credentials. The tester assumes that the service is running with Local System account. How can this weakness be exploited to access the system?
A) Using the Metasploit psexec module setting the SA / Admin credential
B) Invoking the stored procedure xp_shell to spawn a Windows command shell
C) Invoking the stored procedure cmd_shell to spawn a Windows command shell
D) Invoking the stored procedure xp_cmdshell to spawn a Windows command shell
Correct Answer:
Verified
Q46: During a penetration test, the tester conducts
Q47: A pentester gains access to a Windows
Q48: Which of the following types of firewall
Q49: Which of the following techniques does a
Q50: What is the most secure way to
Q52: Which command line switch would be used
Q53: The precaution of prohibiting employees from bringing
Q54: Which of the following conditions must be
Q55: Which of the following cryptography attack methods
Q56: One way to defeat a multi-level security
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents