CompTIA PenTest+ (PT0-003) — Question 25

A penetration tester is evaluating a SCADA system. The tester receives local access to a workstation that is running a single application. While navigating through the application, the tester opens a terminal window and gains access to the underlying operating system. Which of the following attacks is the tester performing?

Answer options

• A. Kiosk escape
• B. Arbitrary code execution
• C. Process hollowing
• D. Library injection

Correct answer: A

Explanation

The correct answer is A, Kiosk escape, as the tester is breaking out of the controlled environment of the kiosk-like application to access the underlying OS. The other options do not accurately describe this scenario; arbitrary code execution refers to running unauthorized code, process hollowing involves injecting code into a process, and library injection is about manipulating shared libraries, none of which directly apply to gaining access from a kiosk environment.