🔥 3-day streak
ISC2 CISSP — Certified Information Systems Security Professional105 / 129
Question 105 of 129

A security analyst reviewing packet captures notices that an attacker on the same network segment successfully injected forged packets into an established TCP session between a client and an internal application server, taking over the session without knowing the user's credentials. The attacker guessed valid values to make the injected packets appear legitimate to the server. Which control would most directly prevent this type of session takeover?

Reviewed for accuracy · Report an issueNext question