ICMP Netmask Request Information Disclosure

This script is Copyright (C) 1999-2011 Tenable Network Security, Inc.


Synopsis :

The remote host is affected by an information disclosure
vulnerability.

Description :

The remote host answers to an ICMP_MASKREQ query and responds with its
netmask. An attacker can use this information to understand how your
network is set up and how routing is done. This may help him to
bypass your filters.

Solution :

Reconfigure the remote host so that it does not answer to those
requests. Set up filters that deny ICMP packets of type 17.

Risk factor :

None

Family: General

Nessus Plugin ID: 10113 (icmp_mask_req.nasl)

Bugtraq ID:

CVE ID: CVE-1999-0524