ScanAlert - Report - Thane

More documents

Recommendations

Info

Overview - 63.109.13.1 Last Audit Date Urgent Critical High Medium Low Total 29-MAR-2007 08:34 0 0 0 0 1 1 Open Ports - 63.109.13.1 Port Protocol Service Banner None Vulnerabilities - 63.109.13.1 None Information Disclosures - 63.109.13.1 ICMP TimeStamp Request Port First Detected Category 0 05-OCT-2006 14:34 Other Protocol Fix Difficulty Impact ICMP Medium Information Disclosure Description The remote host appears to answer to an ICMP timestamp request. This allows an attacker to obtain date and local time information set on your machine. This information could be useful in finding a way to circumvent your time based authentication protocols. Solution Filter out the ICMP timestamp requests (ICMP type 13), and the outgoing ICMP timestamp replies (ICMP type 14). BlackICE firewall: This option is not available in all versions; see Links for details. The following lines can be added to the firewall.ini file under the [MANUAL ICMP...] section: REJECT, 13:0, ICMP TIMESTAMP, 2001-10-15 00:01:00, PERPETUAL, 1000, MANUAL REJECT, 17:0, ICMP MASKREQ, 2001-10-15 00:01:00, PERPETUAL, 1000, MANUAL Result None Links BlackIce Admin Guide BlackIce Block ICMP Related CVE CVE-1999-0524 Resolved Items - 63.109.13.1 Date 22-MAR-2007 12:43 Vulnerability Resolved By Incomplete Port Scan John Pittinger Port 0 Reason The 63.109.13.1 is a router and will not be allowing port scans to be allowed. other than my DMZ port -80 443- 63.109.13.3 is my PIX Device responsible for NAT xlation of my intranet devices. Neither device is a Web server. Thanks Confidential - ScanAlert Security Audit Report Page 6
Overview - 63.109.13.3 Last Audit Date Urgent Critical High Medium Low Total 29-MAR-2007 07:43 0 0 0 0 0 0 Open Ports - 63.109.13.3 Port Protocol Service Banner None Vulnerabilities - 63.109.13.3 None Information Disclosures - 63.109.13.3 None Resolved Items - 63.109.13.3 Date 22-MAR-2007 12:43 Vulnerability Resolved By Incomplete Port Scan John Pittinger Port 0 Reason The 63.109.13.1 is a router and will not be allowing port scans to be allowed. other than my DMZ port -80 443- 63.109.13.3 is my PIX Device responsible for NAT xlation of my intranet devices. Neither device is a Web server. Thanks Confidential - ScanAlert Security Audit Report Page 7
Page 1 and 2: Security Report - By Device Fitness
Page 3 and 4: Report Overview Customer Name Fitne
Page 5: Device Overview Name Urgent Critica
Page 9 and 10: Overview - ashe.fitnessquest.com La
Page 11 and 12: Overview - www.fitnessquest.com Las
Page 13 and 14: city=80000002 state=80000002 zip=80
Page 15: Vulnerability Levels Severity Level

ScanAlert - Report - Thane

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?