Certified Ethical Hacker (CEH v12) — Question 132

Jake, a network security specialist, is trying to prevent network-level session hijacking attacks in his company. While studying different types of such attacks, he learns about a technique where an attacker inserts their machine into the communication between a client and a server, making it seem like the packets are flowing through the original path. This technique is primarily used to reroute the packets. Which of the following types of network-level session hijacking attacks is Jake studying?

Answer options

• A. TCP/IP Hijacking
• B. RST Hijacking
• C. UDP Hijacking
• D. Man-in-the-middle Attack Using Forged ICMP and ARP Spoofing

Correct answer: D

Explanation

The correct answer is D because a Man-in-the-middle Attack Using Forged ICMP and ARP Spoofing involves an attacker intercepting and potentially altering the communication between two parties, which aligns with the description of redirecting packets. Options A, B, and C refer to specific types of session hijacking but do not encompass the broader technique of inserting an unauthorized entity into the communication path.