Which of the following statements are true about spoofing and session hijacking?
Each correct answer represents a complete solution. Choose all that apply.
A.
Session hijacking is an attack in which an attacker takes over the session, and the valid user’s session is disconnected.
B.
Session hijacking is an attack in which an attacker takes over the session, and the valid user’s session is not disconnected.
C.
Spoofing is an attack in which an attacker can spoof the IP address or other identity of the target but the valid user can be active.
D.
Spoofing is an attack in which an attacker can spoof the IP address or other identity of the target and the valid user cannot be active.