| Vulnerability Name: | CCN-5592 | ||||||
| Published: | 2000-11-25 | ||||||
| Updated: | 2000-11-25 | ||||||
| Summary: | The implementation of ICMP error messages in Linux, Sun Solaris, and HP-US could allow a remote attacker to identify the operating system. While these operating systems are compliant with the RFC 1122 standards, they do not follow it as closely as most systems. These operating systems quote the entire offending packet in ICMP error messages, with slight differences between the three systems in the length and content of the error messages. A remote attacker can send an invalid packet and cause the system to respond with an ICMP Protocol unreachable error message that can be used to identify the operating system on the host. An attacker can use this information when planning future attacks. | ||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
| ||||||
| CVSS v2 Severity: | 5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
| ||||||
| Vulnerability Consequences: | Obtain Information | ||||||
| References: | Source: CCN Type: BugTraq Mailing List, Sat Nov 25 2000 - 15:26:58 CST Updated: ICMP Error Message Quoting Size (Identifying Sun Solaris, HP-UX 11.x and LINUX based machines) Source: XF Type: UNKNOWN icmp-size-quot-info(5592) | ||||||
| Vulnerable Configuration: | Configuration CCN 1: Denotes that component is vulnerable | ||||||
| BACK | |||||||