A penetration tester who is conducting a vulnerability assessment discovers that ICMP is disabled on a network segment. Which of the following could be used for a denial-of-service attack on the network segment?
This should be C.
With ICMP packets, all ICMP-based attacks cannot happen, smurf attacks included.
But since fraggle attacks exploit the UDP protocol and NOT ICMP, they stand are chance of being effective in this scenario
Ref: https://www.okta.com/identity-101/fraggle-attack/
Option a. Fraggle is a similar type of attack that targets UDP (User Datagram Protocol) instead of ICMP. It involves sending a large number of spoofed UDP echo packets to network broadcast addresses, leading to amplification and flooding of the victim's IP address.
A Fraggle Attack is a denial-of-service (DoS) attack that involves sending a large amount of spoofed UDP traffic to a router’s broadcast address within a network. It is very similar to a Smurf Attack, which uses spoofed ICMP traffic rather than UDP traffic to achieve the same goal. Given those routers (as of 1999) no longer forward packets directed at their broadcast addresses, most networks are now immune to Fraggle (and Smurf) attacks.
Fraggle attack is same as a Smurf attack but rather than ICMP, UDP protocol is used. The prevention of these attacks is almost identical to Fraggle attack.
upvoted 3 times
...
This section is not available anymore. Please use the main Exam Page.PT1-002 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
BinarySoldier
Highly Voted 3 years, 4 months agobieecop
Most Recent 1 year, 9 months agokiduuu
2 years, 11 months agotokhs
3 years, 1 month agoEZ1656
3 years, 2 months agorogal
3 years, 4 months ago