Linux Kernel UDP Implementation IP Identification Field Remote OS Disclosure

This script is Copyright (C) 2012-2016 Tenable Network Security, Inc.


Synopsis :

The remote operating system can be identified based on its UDP
implementation.

Description :

The remote host appears to be run a version of the Linux kernel that
sends UDP responses in which the IP identification field is constant and
equal to zero (0).

With this information, an attacker could mount further, more targeted
attacks against this host.

Note that RedHat does not consider this a security issue as there are
many ways to identify or fingerprint a Linux host.

See also :

http://seclists.org/bugtraq/2002/Mar/289
http://www.redhat.com/security/data/cve/CVE-2002-0510.html

Solution :

n/a

Risk factor :

None

Family: General

Nessus Plugin ID: 17841 ()

Bugtraq ID: 4314

CVE ID: CVE-2002-0510

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now