CompTIA PenTest+ PT0-002 Practice Question
During a penetration test, a service is found to be utilizing an older remote communication method over HTTP without proper safeguards. Recognizing the potential for exploiting the parser handling these requests, what type of attack should you primarily attempt to compromise the service?
Directory traversal
Buffer overflow attack
XML External Entity (XXE) attack
Cross-Site Scripting (XSS)