GIAC
GCIH · Question #64
GCIH Question #64: Real Exam Question with Answer & Explanation
The correct answer is D: In this type of attack, a hacker sends ICMP packets greater than 65,536 bytes to crash a. A Ping of Death attack involves sending malformed or oversized ICMP packets exceeding the 65,536-byte IP maximum to crash or destabilize a target system.
Vulnerability Exploitation & Privilege Escalation
Question
Which of the following statements about Ping of Death attack is true?
Options
- AIn this type of attack, a hacker sends more traffic to a network address than the buffer can
- BThis type of attack uses common words in either upper or lower case to find a password.
- CIn this type of attack, a hacker maliciously cuts a network cable.
- DIn this type of attack, a hacker sends ICMP packets greater than 65,536 bytes to crash a
Explanation
A Ping of Death attack involves sending malformed or oversized ICMP packets exceeding the 65,536-byte IP maximum to crash or destabilize a target system.
Common mistakes.
- A. Sending more traffic than a buffer can handle describes a generic buffer overflow or flood-based DoS attack, not the specific oversized ICMP packet mechanism of a Ping of Death.
- B. Using common words in upper or lower case to find a password describes a dictionary attack, which is a credential-cracking technique unrelated to ICMP.
- C. Physically cutting a network cable is sabotage or a physical layer attack, which has no relation to the Ping of Death network protocol exploit.
Concept tested. Ping of Death ICMP oversized packet denial of service
Reference. https://learn.microsoft.com/en-us/security/compass/human-operated-ransomware
Topics
#Ping of Death#ICMP oversized packets#DoS attacks#network attacks
Community Discussion
No community discussion yet for this question.