ICMP Node Information Query Information Disclosure

This script is Copyright (C) 2010-2011 Tenable Network Security, Inc.


Synopsis :

The remote host is affected by an information disclosure
vulnerability.

Description :

The remote host answers to an ICMPv6 Node Information Query and
responds with its DNS name, the list of IPv4 addresses and the list of
IPv6 addresses to which it is bound.

An attacker can use this information to understand how the network is
architected, which may help him bypass filters.

Solution :

Reconfigure the remote host so that it does not answer to these
requests. Set up filters that deny ICMP packets of type 139.

Risk factor :

None

Family: General

Nessus Plugin ID: 45399 (icmp_niq.nasl)

Bugtraq ID:

CVE ID:

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial