Examen Final

Lea la siguiente noticia publicada el 27 de agosto de 2018 para responder la pregunta 13.

https://thehackernews.com/2018/08/windows-zero-day-exploit.html

Hacker Discloses Unpatched Windows Zero-Day Vulnerability (With PoC)

A security researcher has publicly disclosed the details of a previously unknown zero-day vulnerability in the Microsoft's Windows operating system that could help a local user or malicious program obtain system privileges on the targeted machine. And guess what? The zero-day flaw has been confirmed working on a "fully-patched 64-bit Windows 10 system."

The vulnerability is a privilege escalation issue which resides in the Windows' task scheduler program and occured due to errors in the handling of Advanced Local Procedure Call (ALPC) systems. Advanced local procedure call (ALPC) is an internal mechanism, available only to Windows operating system components, that facilitates high-speed and secure data transfer between one or more processes in the user mode.

The revelation of the Windows zero-day came earlier today from a Twitter user with online alias SandboxEscaper, who also posted a link to a Github page hosting a proof-of-concept (PoC) exploit for the privilege escalation vulnerability in Windows.

Que es una vulnerabilidad del día cero (Zero Day)?

Seleccione tres respuestas, cuáles son los beneficios clave de la existencia de una zona desmilitarizada (DMZ)

What type of password cracking attack will always be successful

Hardening es una labor que se realiza sobre sistemas operativos para:

Seleccione varias opciones

Which is not a TCP Flag?

Which of the following protects against unauthorized changes to data

Cuantos bytes envió la máquina cliente 145.254.160.237 al servidor 65.208.228.223

En referencia al framework de ataque metasploit, cuál afirmación es correcta:

La sesión TCP que aparece en mayor proporción en la captura de tráfico se refiere a una conexión

Cuantas capas tiene el modelo de defensa en profundidad