From the listing of attacks, choose the attack which exploits session initiation between a Transport
Control Program (TCP) client and server within a network?
A.
Smurf attack
B.
SYN attack
C.
Birthday attack
D.
Buffer Overflow attack
Explanation:
SYN flood is a DoS attack in which the hacker sends a barrage of SYN packets. The receiving
station tries to respond to each SYN request for a connection, thereby tying up all the resources.
All incoming connections are rejected until all current connections can be established. Change this
if you want but in the SYN flood the hacker sends a SYN packet to the receiving station with a
spoofed return address of some broadcast address on their network. The receiving station sends
out this SYN packets (pings the broadcast address) which causes multiple servers or stations to
respond to the ping, thus overloading the originator of the ping (the receiving station). Therefore,the hacker may send only 1 SYN packet, whereas the network of the attacked station is actually
what does the barrage of return packets and overloads the receiving station.
Reference:
Mike Pastore and Emmett Dulaney , Security+ Study Guide , 2nd Edition, Alameda , Sybex , 2004,
p 530