CompTIA
CAS-002 · Question #277
CAS-002 Question #277: Real Exam Question with Answer & Explanation
The correct answer is D: Physical attack. Jailbreaking via USB requires physical device access and exploits vulnerabilities to achieve kernel-level rights, making it both a physical attack and a privilege escalation.
Question
Some mobile devices are jail-broken by connecting via USB cable and then exploiting software vulnerabilities to get kernel-level access. Which of the following attack types represents this scenario? (Select TWO).
Options
- ASession management attack
- BProtocol fuzzing
- CRoot-kit compromise
- DPhysical attack
- EPrivilege escalation
- FMan-in-the-middle
Explanation
Jailbreaking via USB requires physical device access and exploits vulnerabilities to achieve kernel-level rights, making it both a physical attack and a privilege escalation.
Common mistakes.
- A. Session management attacks target authenticated user sessions over a network, which has no relevance to a USB-connected local device exploitation scenario.
- B. Protocol fuzzing is a vulnerability discovery technique that sends malformed inputs to interfaces - it is a research method, not the attack vector used to achieve kernel access via USB.
- C. A rootkit is a stealthy persistence mechanism installed after access is gained - it describes malware behavior post-compromise, not the attack method used to obtain the initial kernel-level access.
- F. Man-in-the-middle attacks intercept network traffic between two communicating parties - no network interception is involved in a direct USB-based local device exploit.
Concept tested. Physical attack and privilege escalation in mobile jailbreaking
Reference. https://csrc.nist.gov/glossary/term/privilege_escalation
Community Discussion
No community discussion yet for this question.