Chapter 6 Flashcards
ping flood
When an attacker attempts to send many ICMP echo request packets
(pings) to a host in an attempt to use up all available bandwidth.
Smurf attack
A type of DoS that sends large amounts of ICMP echoes, broadcasting
the ICMP echo requests to every computer on its network or subnetwork.
Fraggle
A type of DoS similar to the Smurf attack, but the traffi c sent is UDP echo
traffic as opposed to ICMP echo traffi c.
SYN flood
A type of DoS where an attacker sends a large amount of SYN request packets
to a server in an attempt to deny service.
flood guard
Security feature implemented on some firewalls to protect against SYN
floods and other fl ooding attacks. Also known as attack guards.
Ping of Death (POD)
A type of DoS that sends an oversized and/or malformed packet
to another computer.
teardrop attack
A type of DoS that sends mangled IP fragments with overlapping and
oversized payloads to the target machine.
permanent DoS (PDoS) attack
Generally consists of an attacker exploiting security
flaws in routers and other networking hardware by flashing the firmware of the device
and replacing it with a modified image.
fork bomb
An attack that works by creating a large number of processes quickly to
saturate the available processing space in the computer’s operating system.
spoofing
When an attacker masquerades as another person by falsifying information.
TCP/IP hijacking
When a hacker takes over a TCP session between two computers
without the need of a cookie or any other type of host access.
man-in-the-browser (MITB)
Infects a vulnerable web browser and modifies online
transactions. Similar to MITM.
watering hole attack
An attacker profiles which websites a user accesses and later
infects those sites to redirect the user to other websites.
replay attack
An attack in which valid data transmission is maliciously or fraudulently
repeated or delayed.
nonce
A random number issued by an authentication protocol that can only be used
once.