Solved

UDP IP ID Zero

Posted on 2014-04-15
2
1,670 Views
Last Modified: 2014-04-15
I'm running a vulnerability scan on my Cisco router and it has told me that the router is responding with a UDP packet whose IP ID was zero. I'm not certain what this means but I'd like to eliminate the message by patching the hole. However I can't find anything online telling me how to do it. Does anyone know?
0
Comment
Question by:Russ Suter
2 Comments
 
LVL 28

Accepted Solution

by:
asavener earned 500 total points
ID: 40002194
This is not a vulnerability, or attack vector, but it is related to the ability to fingerprint the operating system running on a network device.

First option is to upgrade to the latest IOS version available for the router.  This may or may not eliminate the result.

Next option to to block or filter out any traffic that is not explicitly desired.  (In particular, I would recommend blocking traffic to the IP address of the router itself, unless such traffic is desired, such as management and ICMP traffic)

Final option is to just live with it, as most network scanners will detect it as Linux 2.4.x.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0510
0
 
LVL 20

Author Closing Comment

by:Russ Suter
ID: 40002519
thanks for the information. Based upon that I can rule out the item on the report and justify it.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Short answer to this question: there is no effective WiFi manager in iOS devices as seen in Windows WiFi or Macbook OSx WiFi management, but this article will try and provide some amicable solutions to better suite your needs.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

930 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now