nerdexam
Check_Point

156-315.75 · Question #516

156-315.75 Question #516: Real Exam Question with Answer & Explanation

The correct answer is D. Some implementations of the TCP/IP IP fragmentation re-assembly code do not properly handle overlapping. See the full explanation below for the reasoning.

Question

You are responsible for the IPS configuration of your Check Point firewall. Inside the Denial of service section you need to set the protection parameters against the Teardrop attack tool with high severity. How would you characterize this attack tool? Give the BEST answer. Check Point 156-315.75 Exam

Exhibit

156-315.75 question #516 exhibit

Options

  • AHackers can send high volumes of non-TCP traffic in an effort to fill up a firewall State Table.
  • BA remote attacker may attack a system by sending a specially crafted RPC request to execute arbitrary
  • CSome implementations of TCP/IP are vulnerable to packets that are crafted in a particular way (a SYN
  • DSome implementations of the TCP/IP IP fragmentation re-assembly code do not properly handle overlapping

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 156-315.75 Practice