PrepAway - Latest Free Exam Questions & Answers

Pick the BEST choice below.

In this type of attack, the intruder re-routes data traffic from a network device to a personal machine. This
diversion allows an attacker to gain access to critical resources and user credentials, such as passwords, and
to gain unauthorized access to critical systems of an organization. Pick the BEST choice below.

PrepAway - Latest Free Exam Questions & Answers

A.
Network Address Translation

B.
Network Address Hijacking

C.
Network Address Supernetting

D.
Network Address Sniffing

Explanation:
Network address hijacking allows an attacker to reroute data traffic from a network device to a personal
computer.
Also referred to as session hijacking, network address hijacking enables an attacker to capture and analyze the
data addressed to a target system. This allows an attacker to gain access to critical resources and user
credentials, such as passwords, and to gain unauthorized access to critical systems of an organization.
Session hijacking involves assuming control of an existing connection after the user has successfully created
an authenticated session. Session hijacking is the act of unauthorized insertion of packets into a data stream. It
is normally based on sequence number attacks, where sequence numbers are either guessed or intercepted.
Incorrect Answers:
A: Network address translation (NAT) is a methodology of modifying network address information in Internet
Protocol (IP) datagram packet headers while they are in transit across a traffic routing device for the purpose of
remapping one IP address space into another. This is not what is described in the question.C: Network Address Supernetting is forming an Internet Protocol (IP) network from the combination of two or
more networks (or subnets) with a common Classless Inter-Domain Routing (CIDR) prefix. The new routing
prefix for the combined network aggregates the prefixes of the constituent networks. This is not what is
described in the question.
D: Network Address Sniffing: This is another bogus choice that sounds good but does not even exist. However,
sniffing is a common attack to capture cleartext passwords and information unencrypted over the network.
Sniffing is accomplished using a sniffer also called a Protocol Analyzer. A network sniffer monitors data flowing
over computer network links. It can be a self-contained software program or a hardware device with the
appropriate software or firmware programming. Also sometimes called “network probes” or “snoops,” sniffers
examine network traffic, making a copy of the data but without redirecting or altering it.

http://compnetworking.about.com/od/networksecurityprivacy/g/bldef_sniffer.htm
http://wiki.answers.com/Q/What_is_network_address_hijacking
Krutz, Ronald L. and Russell Dean Vines, The CISSP Prep Guide: Mastering the CISSP and ISSEP Exams,
2nd Edition, Wiley Publishing, Indianapolis, 2004, p. 239


Leave a Reply