An attacker injects malicious query strings in user input fields to bypass web service
authentication mechanisms and to access back-end databases. Which of the following
attacks is this?
A.
Frame Injection Attack
B.
LDAP Injection Attack
C.
XPath Injection Attack
D.
SOAP Injection Attack
Explanation:
http://luizfirmino.blogspot.com/2011_09_01_archive.html
C and D both apply i’d say.
No. The question is about “web service”. The only answer that is related with web service is “SOAP Injection Attack”. So the answer should be “D”.
D is the right answer
“D” Module 16 Page 593 ECSAv8