Home » Cisco » 210-260 v.2 » What is the most common Cisco Discovery Protocol version 1 attack?
What is the most common Cisco Discovery Protocol version 1 attack?
A. Denial of Service
B. MAC-address spoofing
C. CAM-table overflow
D. VLAN hopping
Correct Answer: A
Explanation/Reference:
The older version of CDP v1 are vulnerable to DoS attacks, such that an attacker could flood the network segment with large CDP frames containing random device ID’s causing Cisco devices running this version to crash. Targeting a vulnerable router using this attack could allow the attacker to send spoofed CDP frames with new route information with a higher priority so that traffic is rerouted to an unauthorised device. Although this form of DoS only affects older versions of the protocol many older platforms cannot upgrade to newer releases due to flash ROM size constraints, so I’m sure there are many devices still at risk to this exploit.
Reference: http://packetbuddha.blogspot.com/2009/12/cdp-attacks.html