ScanAlert - Report - Thane
ScanAlert - Report - Thane
ScanAlert - Report - Thane
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Overview - 63.109.13.1<br />
Last Audit Date<br />
Urgent Critical High Medium Low<br />
Total<br />
29-MAR-2007 08:34 0 0 0 0 1 1<br />
Open Ports - 63.109.13.1<br />
Port Protocol Service Banner<br />
None<br />
Vulnerabilities - 63.109.13.1<br />
None<br />
Information Disclosures - 63.109.13.1<br />
ICMP TimeStamp Request<br />
Port First Detected Category<br />
0 05-OCT-2006 14:34 Other<br />
Protocol Fix Difficulty Impact<br />
ICMP Medium Information Disclosure<br />
Description<br />
The remote host appears to answer to an ICMP timestamp request.<br />
This allows an attacker to obtain date and local time information set on your machine. This information could be useful in finding a way to<br />
circumvent your time based authentication protocols.<br />
Solution<br />
Filter out the ICMP timestamp requests (ICMP type 13), and the outgoing ICMP timestamp replies (ICMP type 14).<br />
BlackICE firewall: This option is not available in all versions; see Links for details. The following lines can be added to the firewall.ini file<br />
under the [MANUAL ICMP...] section:<br />
REJECT, 13:0, ICMP TIMESTAMP, 2001-10-15 00:01:00, PERPETUAL, 1000, MANUAL<br />
REJECT, 17:0, ICMP MASKREQ, 2001-10-15 00:01:00, PERPETUAL, 1000, MANUAL<br />
Result<br />
None<br />
Links<br />
BlackIce Admin Guide<br />
BlackIce Block ICMP<br />
Related<br />
CVE CVE-1999-0524<br />
Resolved Items - 63.109.13.1<br />
Date 22-MAR-2007 12:43<br />
Vulnerability<br />
Resolved By<br />
Incomplete Port Scan<br />
John Pittinger<br />
Port 0<br />
Reason<br />
The 63.109.13.1 is a router and will not be allowing port scans to be allowed. other than my DMZ port -80 443- 63.109.13.3 is<br />
my PIX Device responsible for NAT xlation of my intranet devices. Neither device is a Web server. Thanks<br />
Confidential - <strong>ScanAlert</strong> Security Audit <strong>Report</strong><br />
Page 6