Certified Ethical Hacker (CEH) — Question 76
SNMP is a protocol used to query hosts, servers, and devices about performance or health status data. This protocol has long been used by hackers to gather great amount of information about remote hosts. Which of the following features makes this possible? (Choose two.)
Answer options
- A. It used TCP as the underlying protocol.
- B. It uses community string that is transmitted in clear text.
- C. It is susceptible to sniffing.
- D. It is used by all network devices on the market.
Correct answer: B, D
Explanation
The correct answer includes B because the community string being sent in clear text allows unauthorized users to gain access to sensitive information. Option D is also correct, as the widespread use of SNMP across various network devices makes it a target for exploitation. Options A and C are incorrect since SNMP typically uses UDP, not TCP, and while it can be vulnerable to sniffing, this does not directly contribute to the specific exploitation in question.