Why would a threat actor launch a MAC address overflow attack on a small network?
- To capture frames destined for other LAN devices
- To ensure legitimate hosts cannot forward traffic
- To launch a DoS attack
- To overwhelm the switch and drop frames
Explanation: MAC address table attacks are conducted to overwhelm a switch to disregard the MAC address table entries and instead forward incoming traffic out all ports. Threat actors connected to the LAN can then capture traffic using a protocol analyzer such as Wireshark.
Exam with this question: 10.6.2 Module Quiz - LAN Security Concepts
Please login or Register to submit your answer