What exploits the Dynamic Trunking Protocol (DTP)?

The exploitation of the Dynamic Trunking Protocol (DTP) occurs through switch spoofing. DTP is a Cisco proprietary protocol used for negotiating trunking on a switch port. In a switch spoofing attack, a malicious actor configures their device to impersonate a switch, allowing it to establish a trunk link with the legitimate switch.

By successfully establishing this connection, the attacker can gain unauthorized access to VLANs that are carried over the trunk link. This can lead to various types of network attacks, such as packet sniffing, violating security policies, or even broader attacks on the network. Therefore, understanding the implications of DTP and the potential for switch spoofing is crucial for network security.

The other options listed do not directly relate to exploiting DTP. ARP poisoning, for example, involves sending malicious ARP messages to manipulate the Address Resolution Protocol, while routers function at a different layer and are not applicable to DTP exploitation. Double tagging is a method that allows VLAN tags to be manipulated but does not specifically exploit DTP like switch spoofing does.