CompTIA CASP+ Practice Test

What type of attack involves exploiting software vulnerabilities to gain kernel-level access on jail-broken devices?

• A. Network attack
• B. Privilege escalation
• C. Physical attack
• D. Session hijacking

The correct answer is: Physical attack

In this context, the type of attack that involves exploiting software vulnerabilities to gain kernel-level access on jail-broken devices is best categorized as privilege escalation. This attack occurs when an unauthorized user or malicious software gains elevated access to resources that are normally protected, which is particularly relevant in environments where the operating system's security mechanisms have been compromised, such as in jail-broken devices. When a device is jail-broken, its operating system limitations are lifted, allowing a user potentially to gain access to root-level permissions that would typically not be available. Exploiting vulnerabilities at this level can allow attackers complete control over the device, enabling them to modify system settings, access sensitive information, and install additional malicious software, turning the device into a platform for further exploitation or attacks. In contrast, a network attack generally refers to attempts to disrupt or compromise network services without necessarily involving kernel-level access. Physical attacks involve direct interaction with the device, such as theft or tampering, and do not specifically focus on software vulnerabilities in the way privilege escalation does. Session hijacking typically involves taking over a user's session after they've successfully authenticated, which again differs from the exploitative nature of gaining elevated permissions on a compromised device.