nerdexam
GIAC

GSLC · Question #442

GSLC Question #442: Real Exam Question with Answer & Explanation

The correct answer is A. Bluebug attack B. Bluesnarfing. Bluebug and Bluesnarfing are Bluetooth-specific attacks that exploit the Bluetooth protocol to gain unauthorized access to device data or functionality.

Question

Which of the following are considered Bluetooth security violations? Each correct answer represents a complete solution. Choose two.

Options

  • ABluebug attack
  • BBluesnarfing
  • CSQL injection attack
  • DSocial engineering
  • ECross site scripting attack

Explanation

Bluebug and Bluesnarfing are Bluetooth-specific attacks that exploit the Bluetooth protocol to gain unauthorized access to device data or functionality.

Common mistakes.

  • C. SQL injection targets web applications and databases by injecting malicious SQL queries through input fields; it has no relationship to the Bluetooth protocol.
  • D. Social engineering is a psychological manipulation technique used across many contexts and is not a Bluetooth-specific protocol violation or technical attack.
  • E. Cross-site scripting (XSS) is a web application attack that injects malicious scripts into web pages viewed by other users and is unrelated to Bluetooth communications.

Concept tested. Bluetooth-specific attack types - Bluebug and Bluesnarfing

Reference. https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-121r2.pdf

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GSLC Practice