Understanding Cisco Cybersecurity Fundamentals (SECFND, legacy) — Question 64

Which of the following is a TCP-injection attack?

Answer options

• A. Forging a TCP packet over an HTTPS session
• B. Replacing legitimate TCP traffic with forged TCP packets
• C. The addition of a forged TCP packet to an existing TCP session
• D. Modifying the TCP/IP in a way that is unexpected by security detection

Correct answer: C

Explanation

The correct answer, C, describes the act of injecting a forged TCP packet into an active TCP session, which is the essence of a TCP-injection attack. Options A and B imply the creation or replacement of packets but do not specifically relate to an existing session, while D suggests modification without the specific context of session injection.