ScanAlert - Report - Thane
ScanAlert - Report - Thane
ScanAlert - Report - Thane
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Overview - 63.109.13.5<br />
Last Audit Date<br />
Urgent Critical High Medium Low<br />
Total<br />
29-MAR-2007 15:42 0 0 0 0 1 1<br />
Open Ports - 63.109.13.5<br />
Port Protocol Service Banner<br />
None<br />
Vulnerabilities - 63.109.13.5<br />
None<br />
Information Disclosures - 63.109.13.5<br />
ICMP TimeStamp Request<br />
Port First Detected Category<br />
0 26-JAN-2006 11:12 Other<br />
Protocol Fix Difficulty Impact<br />
ICMP Medium Information Disclosure<br />
Description<br />
The remote host appears to answer to an ICMP timestamp request.<br />
This allows an attacker to obtain date and local time information set on your machine. This information could be useful in finding a way to<br />
circumvent your time based authentication protocols.<br />
Solution<br />
Filter out the ICMP timestamp requests (ICMP type 13), and the outgoing ICMP timestamp replies (ICMP type 14).<br />
BlackICE firewall: This option is not available in all versions; see Links for details. The following lines can be added to the firewall.ini file<br />
under the [MANUAL ICMP...] section:<br />
REJECT, 13:0, ICMP TIMESTAMP, 2001-10-15 00:01:00, PERPETUAL, 1000, MANUAL<br />
REJECT, 17:0, ICMP MASKREQ, 2001-10-15 00:01:00, PERPETUAL, 1000, MANUAL<br />
Result<br />
None<br />
Links<br />
BlackIce Admin Guide<br />
BlackIce Block ICMP<br />
Related<br />
CVE CVE-1999-0524<br />
Resolved Items - 63.109.13.5<br />
Date 05-OCT-2006 12:48<br />
Vulnerability<br />
Resolved By<br />
Incomplete Port Scan<br />
John Pittinger<br />
Port 0<br />
Reason<br />
this is a router not allowing ports to be scanned.<br />
Confidential - <strong>ScanAlert</strong> Security Audit <strong>Report</strong><br />
Page 8