ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-49v10 All Questions

View all questions & answers for the 312-49v10 exam
Go to Exam

Exam 312-49v10 topic 1 question 314 discussion

Actual exam question from ECCouncil's 312-49v10
Question #: 314
Topic #: 1
[All 312-49v10 Questions]

Wireless access control attacks aim to penetrate a network by evading WLAN access control measures such as AP MAC filters and Wi-Fi port access controls.
Which of the following wireless access control attacks allow the attacker to set up a rogue access point outside the corporate perimeter and then lure the employees of the organization to connect to it?

  • A. Ad hoc associations
  • B. Client mis-association
  • C. MAC spoofing
  • D. Rogue access points
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by EREBBUS at Nov. 23, 2021, 5:12 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Denovembre
Highly Voted 2 years, 7 months ago
In CHFI training materials book definition claims that Rogue Access Point attack occurs when AP is created inside victims network while Client Miss Assotiation happens outisde of victims network. Thus B is correct as far as book definitions go.
upvoted 5 times
...
044f354
Most Recent 7 months ago
Selected Answer: B
B. Client Misassociation ▪ Client Misassociation A client misassociation attack begins when a client attaches to an access point that is not in their own network. Due to the manner in which wireless signals propagate through walls and other structures, a client system may detect an access point belonging to another network and attach to it, either accidently or intentionally. In either case, the client may attach to a network that is unsafe, perhaps while still being connected to a secure network. This last scenario can result in a malicious party gaining access into a protected network Official EC Council Curriculum Computer Hacking Forensic Investigator Exam 312-49 Network Forensics Module 08 Page 786
upvoted 1 times
...
Elb
11 months, 3 weeks ago
B: The AP allows connectivity to the Internet but is not actually on your corporate wired network. Using tools that are easily available on the Internet, another client connected to the same rogue AP attacks the misassociated client and steals valuable corporate data.
upvoted 1 times
...
BarryMacockener
1 year, 3 months ago
The answer is B. Client misassociation. Rogue access point cannot be correct, as a rogue access point by definition is ON the corporate network.
upvoted 1 times
...
khan1998
1 year, 8 months ago
B. Client Misassociation just describes that the client will automatically connect to the device since it assumes that it is a previously trusted one, i.e. same SSID and maybe same MAC too. Rogue AP just means that the AP is malicious
upvoted 2 times
...
AspiringScriptKiddie
2 years, 4 months ago
None are 100% correct since this is an evil twin (or as CFHI training materials call it, a Honeypot Access point Attack). The question says which attack allows users to set up a rogue access point outside of the network so the answer can't be "rogue access point". The best answer, given our choices and in my opinion only, is mis-association because 1) it's outside the network 2) attackers are trying to lure people to connect so the SSID must be something that people have connected to before.
upvoted 3 times
...
Chaoticda
2 years, 7 months ago
D is the correct answer
upvoted 1 times
...
ctaregistro
2 years, 7 months ago
D. Rogue access points
upvoted 1 times
...
EREBBUS
2 years, 7 months ago
I think option D is the right option. The context of the question goes moreover the mis association.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel