Got it

Introduction to Ping of Death Attack Highlighted

Latest reply: Aug 25, 2021 10:39:20 565 13 8 0 0

Hello everyone,

Today, I'm going to introduce you Ping of Death Attack.

What is Ping of Death Attack

Ping of Death Attack is a type of DoS attack.

Ping of Death is when an attacker sends some large-sized ICMP packets (the length of the data part exceeds 65507 bytes) to attack the device. After the device receives such a large ICMP packet, if it is handled improperly, the protocol stack will crash.

How does Ping of Death Attack work

This section describes the formats of IP packets and ICMP packets to help you better understand the principle of the Ping of Death attack.

IP packets format

Figure 1: IP packets format


IGMP packets format

Figure 2IGMP packets format

4-bit header length: indicates the length of the IP header. The maximum length of the IP header is 60 bytes. The length of the header of a common IP packet is 20 bytes.

16-bit total packet length: indicates the length of an IP packet. The maximum length of a single IP packet cannot exceed 65535 bytes.

The maximum length of an IP packet is 65535 bytes. If 20 bytes in the IP header and 8 bytes in the ICMP header are excluded, the maximum length of the data part is 65,507 bytes. An ICMP packet with a large size is an ICMP packet with a data part longer than 65,507 bytes.

Because TCP cannot transmit a data packet larger than 65535 bytes, an attacker fragments and sends the packet. After receiving the packet, the device attempts to reassemble the packet. As a result, the packet is too large to be processed and the buffer overflows, causing the system to crash, crash, or restart.

How to prevent

For Ping of Death attacks, network security devices cannot defend against ultra-large packets because most packets on the live network are fragmented. Therefore, a single packet does not exceed 65,507 bytes. The number of bytes exceeds 65,507 only after the receiver completes the combination. Therefore, the most effective defense against Ping of Death attacks is to prohibit ICMP packets from passing through the network security device.

That is all I want to share with you! Thank you!


andersoncf1
MVE Author Created Jul 30, 2021 16:33:01

Well done. Thanks for sharing
View more
  • x
  • convention:

DDSN
DDSN Created Aug 6, 2021 09:24:06 (0) (0)
 
Detailed explanation
View more
  • x
  • convention:

DDSN
DDSN Created Aug 6, 2021 09:24:17 (0) (0)
 
Thanks for sharing how to prevent
View more
  • x
  • convention:

DDSN
DDSN Created Aug 6, 2021 09:24:54 (0) (0)
Thank you!  
simchamnan
simchamnan Created Aug 22, 2021 01:25:09 (0) (0)
 
Very good. Healthy.
View more
  • x
  • convention:

S_Noch
S_Noch Created Aug 5, 2021 13:46:01 (0) (0)
 
DDSN
DDSN Created Aug 6, 2021 09:25:01 (0) (0)
 
cool
View more
  • x
  • convention:

DDSN
DDSN Created Aug 6, 2021 09:25:11 (0) (0)
 
Good post. Keep up the good work!
View more
  • x
  • convention:

Comment

You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.