Vulnerabilities and Attacks

Question 1

Hardware Vulnerabilities

Answer 1

Security (flaws, weaknesses) inherent in the device’s physical components/design

Question 2

Firmware

Answer 2

Software stored on the hardware device that provides the low-level control for device specific hardware

Question 3

End-of-Life Systems

Answer 3

Systems reach the end of their lifecycle

Question 4

Hardware Misconfigurations

Answer 4

When the device’s (settings, parameters, and/or options) are not set up optimally leading to unintended behaviors and vulnerabilities

Question 5

Hardware Vulnerabilities Preventions

Answer 5

Hardening, patching, configuration enforcement, decommissioning, isolation, and segmentation

Question 6

Configuration enforcement

Answer 6

Ensuring repeatable secure environments by making sure the configuration remains the same

Question 7

Bluetooth vulnerabilities

Answer 7

Insecure pairing, device spoofing, on-path attacks

Question 8

Insecure Pairing

Answer 8

When bluetooth devices establish a connection without proper authentication

Question 9

On-path Attack

Answer 9

Exploits bluetooth protocol vulnerabilities to intercept/alter communications between devices without either party being aware

Question 10

Bluetooth attacks

Answer 10

Bluejacking, BlueSnarfing, BlueBugging, BlueSmack, and BlueBorne

Question 11

BlueJacking

Answer 11

Is sending an unsolicited message over bluetooth to test vulnerabilities

Question 12

BlueSnarfing

Answer 12

Is unauthorized access via bluetooth to steal info like (calls, text messages, contacts)

Question 13

BlueBugging

Answer 13

Is BlueSnarfing with the added feature trying to take control on the device

Question 14

BlueSmack

Answer 14

Is a DDoS attack where we overwhelm a Bluetooth device to crash the device

Question 15

Blueborne

Answer 15

A bluetooth attack of bouncing between devices via bluetooth

Question 16

Mobile Vulnerability Types

Answer 16

Side Loading, Jailbreaking/Rooting, and Insecure connection methods

Question 17

Mobile Device Management (MDM) Solution

Answer 17

Conduct patching of the devices by pushing necessary updates to the device

Question 18

Zero Day Vulnerabilities

Answer 18

Any vulnerabilities that’s discovered or exploited it before the vendor can issue a patch for it

Question 19

Zero Day Exploit

Answer 19

Any known exploit in the wild that exposes a previously unknown vulnerability in software’s hardware

Question 20

Operating System Vulnerabilities

Answer 20

Unpatched Systems, Zero-Day Vulnerabilities, Misconfiguration, Data Exfiltration, and Malicious Updates

Question 21

Data exfiltration

Answer 21

Unauthorized data transfers from within an organization to an external location

Question 22

Malicious Updates

Answer 22

When an attacker has been able to craft a malicious update to a program to compromise the systems of the end-users

Question 23

Code injection

Answer 23

The insertion of additional malicious data code through the data input form of a client to application

Question 24

SQL injection

Answer 24

Looks like: ‘OR 1=1’ <- code injection but in the syntax of SQL

Question 25

Extensible Markup Language (XML)

Answer 25

Used by web applications for authentication, authorization, and other types of data exchange

Question 26

XML Bomb (Billion Laughs ATTACK)

Answer 26

XML encodes entities that expand to exponential sizes, concealing memory on the host, eventually crashing it

Question 27

XML External Entity (XXE)

Answer 27

An attack that embeds a request for a local resource

Question 28

(Font, Image, Href)

Answer 28

HTML

Question 29

(Question, ID, Type, Element, Entity)

Answer 29

XML

Question 30

Cross-Site Scripting

Answer 30

Injects a malicious script into a trusted website to compromise the site's visitors; Basically a leak from a trusted website with a script appended to the end, that the browser runs instantly

Question 31

Non-Persistent Cross-Site Script

Answer 31

Will run once when launched

Question 32

Persistent Cross-Site Script

Answer 32

Will try to wedge itself into the database of the website to be run everytime

Question 33

Document Object Model (DOM) XSS

Answer 33

Exploits the web browser specifically with client-side JavaScript; DOM commands

Question 34

Any URL with JS attached to it is a

Answer 34

Cross-size scripting attack

Question 35

If it has a document attached in the script

Answer 35

It is a DOM-based XSS

Question 36

Session Management

Answer 36

Enables web apps to uniquely identify a user across different actions and requests

Question 37

Session Hijacking

Answer 37

Type of spoofing attack where the attacker disconnects a host and replaces it with their machine by spoofing the IP and their cookies

Question 38

Section Prediction

Answer 38

Type of spoofing attack where the attacker attempts to predict the session token in order to hijack

Question 39

Cross-site request forgery (XSRF)

Answer 39

Script is used to exploit a session started on another site within the same web browser

Question 40

Buffer Overflow

Answer 40

Occurs when data extends outside of its allocated memory range, potentially allowing unauthorized access of code execution

Question 41

Stack

Answer 41

The region where a program stores the return address from functioning calls

Question 42

"Smashing the stack"

Answer 42

When an attacker can execute their malicious code by overwriting the return address

Question 43

Race Conditions

Answer 43

Software vulnerability where the outcome depends on the timing events not matching the developer's intended order

Question 44

Race Condition Time of Check (TOC)

Answer 44

The attacker can alter system rescores after an application checks its state but before the operation is performed

Question 45

Race Condition Time of Use (TOU)

Answer 45

When an attacker can change the state of a system resource between the time it's checked and the time it's used

Question 46

Race Condition Time of Evaluation (TOE)

Answer 46

Involves the manipulation of data or resources during the time when the system is making decision or evaluation