CompTIA Security+ Exam Prep

Category - Security

David is the Security Administrator at his organization. He is investigating an issue where the corporate server will not accept any connections using the TCP protocol. On close inspection he sees that the server indicates that it has exceeded its session limit. Which type of attack is this?
  1. TCP ACK attack
  2. TCP/IP hijacking
  3. Smurf attack
  4. Virus attack
Explanation
Answer - A - A TCP ACK attack creates multiple incomplete sessions, as in this case.

Key Takeaway: When an attack creates multiple incomplete sessions, it exhausts the capacity of the server to service valid requests. Eventually the TCP protocol hits a maximum limit and refuses additional connections. This in turn leads to DoS attacks. TCP/IP hijacking is an attempt to steal a valid IP address and use it to gain authorization or information from a network. A smurf attack uses IP spoofing and broadcasting to send a ping to a group of hosts in a network.
Was this helpful? Upvote!
Login to contribute your own answer or details

Top questions

Related questions

Most popular on PracticeQuiz