CAS-003 Question #667: Real Exam Question with Answer & Explanation

The correct answer is C: Smurf. A Smurf attack is an ICMP-based Distributed Denial of Service (DDoS) technique in which an attacker sends ICMP echo requests to a network broadcast address using the victim's spoofed IP. Because the system in this scenario neither requires authentication nor can authenticate netw

Question

An employee decides to log into an authorized system. The system does not prompt the employee for authentication prior to granting access to the console, and it cannot authenticate the network resources. Which of the following attack types can this lead to if it is not mitigated?

Options

AMemory leak
BRace condition
CSmurf
DResource exhaustion

Explanation

A Smurf attack is an ICMP-based Distributed Denial of Service (DDoS) technique in which an attacker sends ICMP echo requests to a network broadcast address using the victim's spoofed IP. Because the system in this scenario neither requires authentication nor can authenticate network-connected resources, it is unable to verify the legitimacy of ICMP traffic or the identity of requesting hosts. This unauthenticated state allows an attacker to exploit the system's network stack to amplify ICMP broadcast traffic toward a victim, enabling a Smurf-style amplification attack. A memory leak and resource exhaustion are software faults, not network-layer attacks, and a race condition is a concurrency vulnerability.

Community Discussion

No community discussion yet for this question.

Full CAS-003 Practice