A PoD (Ping of Death) attack is a type of denial-of-service (DoS) assault where the attacker sends a packet that exceeds the maximum permissible size, causing the victim’s computer to crash or freeze. The original PoD attack is becoming less frequent. An ICMP flood attack, which is similar, is more common.
How does a ping of death attack work?
An ICPM (Intenet Control Message Protocol) echo-reply message, also known as a “ping,” is a network tool used to examine a network connection. It operates similarly to sonar in that a “pulse” is sent out, and the “echo” from that pulse provides environmental information to the user. In the case of the connection functioning properly, the source machine gets a response from the target computer.
Despite some ping packets being short, the size of IP4 ping packets is substantially larger and can exceed the maximum permitted 65,535 bytes packet size. Numerous TCP/IP systems were never developed to withstand packets above the maximum size, making them vulnerable.
When an attacker sends a maliciously big packet to the victim, it is broken into pieces, each being smaller than the size limit. When the target computer tries to reassemble the fragments, the total goes past the size limit, resulting in a buffer overflow and the target computer rebooting, freezing, or crashing.
Despite the usage of ICMP echo for this attack, any method that includes the transmission of an IP datagram is employable. IPX, TCP, and UDP transmissions are all included.
How is a ping of death DDoS attack mitigated?
To prevent such an attack, we recommend the addition of checks to the process of reassembly to ensure that the packet size limit is not surpassed after packet recombination. Another option is the establishment of a memory buffer with adequate space to accommodate packets that exceed the limit allowed by the guidelines.
The original PoD attack is almost extinct; electronics manufactured after the year 1998 are usually immune to this form of attack. Some outdated hardware might still be at risk. A new PoD attack for IPv6 packets was identified recently and patched in mid-2013. Cloudflare DDoS Protection discards faulty packets before they reach their target, causing the mitigation of PoD attacks.
CooliceHost.com Blog is using cookies. We use cookies to ensure that we give you the best experience on our website. By continuing to use this site, you are agreeing to our use of cookies. AcceptRejectLearn More
Privacy & Cookies Policy
Privacy Overview
This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
Support
Login
