During a web penetration test, you observe that session data in a URL parameter is encrypted with AES-128 in CBC mode. The application concatenates the IV in clear text before the ciphertext and performs no message authentication. Which attack would most reliably allow you to change specific bits of the decrypted session data without discovering the key?
Use a chosen-plaintext replay to substitute a captured ciphertext block
Perform a meet-in-the-middle attack on the AES key schedule
Launch a padding-oracle attack exploiting CBC padding errors
Execute a CBC bit-flipping attack against the IV or a preceding block
CBC mode is malleable because each plaintext block is produced by XOR-ing the decrypted ciphertext block with the previous ciphertext block (or IV for the first block). By flipping chosen bits in the IV or a preceding ciphertext block, an attacker can deterministically flip corresponding bits in the following plaintext block. This technique is known as a CBC bit-flipping attack and works even when the key remains unknown. A padding-oracle attack targets padding validation to recover plaintext, not to predictably modify it. Meet-in-the-middle attacks require two independent encryption stages (e.g., 2DES) and are ineffective against single-key AES. Simply replaying or substituting whole ciphertext blocks does not provide fine-grained control over individual plaintext bits.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is CBC mode in AES and why is it malleable?
Open an interactive chat with Bash
How does a CBC bit-flipping attack work?
Open an interactive chat with Bash
What role does the lack of message authentication play in enabling CBC bit-flipping attacks?
Open an interactive chat with Bash
What is CBC mode in AES encryption?
Open an interactive chat with Bash
What is a CBC bit-flipping attack?
Open an interactive chat with Bash
Why is message authentication important in AES encryption?
Open an interactive chat with Bash
Certified Ethical Hacker (CEH)
Cryptography
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .