ScanAlert - Report - Thane
ScanAlert - Report - Thane
ScanAlert - Report - Thane
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Protocol Fix Difficulty Impact<br />
HTTP Medium Information Disclosure<br />
Description<br />
During an audit common directories are looked for. This may result in non public Web pages being found.<br />
Solution<br />
Make sure that these directories are intented for the public.<br />
Result<br />
Method GET Protocol https Port 443 Demo<br />
Path /images/<br />
Links<br />
None<br />
Related<br />
None<br />
ICMP TimeStamp Request<br />
Port First Detected Category<br />
0 26-JAN-2006 20:11 Other<br />
Protocol Fix Difficulty Impact<br />
ICMP Medium Information Disclosure<br />
Description<br />
The remote host appears to answer to an ICMP timestamp request.<br />
This allows an attacker to obtain date and local time information set on your machine. This information could be useful in finding a way to<br />
circumvent your time based authentication protocols.<br />
Solution<br />
Filter out the ICMP timestamp requests (ICMP type 13), and the outgoing ICMP timestamp replies (ICMP type 14).<br />
BlackICE firewall: This option is not available in all versions; see Links for details. The following lines can be added to the firewall.ini file<br />
under the [MANUAL ICMP...] section:<br />
REJECT, 13:0, ICMP TIMESTAMP, 2001-10-15 00:01:00, PERPETUAL, 1000, MANUAL<br />
REJECT, 17:0, ICMP MASKREQ, 2001-10-15 00:01:00, PERPETUAL, 1000, MANUAL<br />
Result<br />
None<br />
Links<br />
BlackIce Admin Guide<br />
BlackIce Block ICMP<br />
Related<br />
CVE CVE-1999-0524<br />
Resolved Items - www.fitnessquest.com<br />
None<br />
Confidential - <strong>ScanAlert</strong> Security Audit <strong>Report</strong><br />
Page 14