During an external penetration test you send an HTTP OPTIONS request to a company's IIS 10 web server. The header shows: Allow: GET, HEAD, OPTIONS, PUT, DELETE, PROPFIND, MKCOL. Further tests confirm WebDAV is enabled and no authentication protects these verbs. According to standard web-server attack workflow, which exploitation step should you try next?
Upload a malicious .aspx web shell through the WebDAV PUT method and invoke it to gain code execution on the server.
Exploit the Shellshock Bash vulnerability in any CGI scripts hosted on the server.
Attempt SQL injection against the user authentication form on the site's homepage.
Request an AXFR transfer from the organization's name server to enumerate internal DNS records.
Because unauthenticated WebDAV write methods (PUT, MKCOL, DELETE) are enabled, you can upload arbitrary files into the web root. If the server accepts an executable type such as an .aspx page, uploading a malicious web shell and then requesting it in a browser yields remote code execution under the web-server account. The other options do not leverage the revealed WebDAV issue: SQL injection targets database inputs, Shellshock exploits Bash CGI scripts (irrelevant to IIS), and a DNS zone transfer targets DNS, not HTTP verbs.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is WebDAV and how does it function in a web server?
Open an interactive chat with Bash
How does the WebDAV PUT method enable uploading exploits?
Open an interactive chat with Bash
What is a web shell, and how can it be used in cyberattacks?
Open an interactive chat with Bash
Certified Ethical Hacker (CEH)
Web Application Hacking
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .