Solved

UDP IP ID Zero

Posted on 2014-04-15
2
1,613 Views
Last Modified: 2014-04-15
I'm running a vulnerability scan on my Cisco router and it has told me that the router is responding with a UDP packet whose IP ID was zero. I'm not certain what this means but I'd like to eliminate the message by patching the hole. However I can't find anything online telling me how to do it. Does anyone know?
0
Comment
Question by:Russ Suter
2 Comments
 
LVL 28

Accepted Solution

by:
asavener earned 500 total points
ID: 40002194
This is not a vulnerability, or attack vector, but it is related to the ability to fingerprint the operating system running on a network device.

First option is to upgrade to the latest IOS version available for the router.  This may or may not eliminate the result.

Next option to to block or filter out any traffic that is not explicitly desired.  (In particular, I would recommend blocking traffic to the IP address of the router itself, unless such traffic is desired, such as management and ICMP traffic)

Final option is to just live with it, as most network scanners will detect it as Linux 2.4.x.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0510
0
 
LVL 20

Author Closing Comment

by:Russ Suter
ID: 40002519
thanks for the information. Based upon that I can rule out the item on the report and justify it.
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Suggested Solutions

Even if you have implemented a Mobile Device Management solution company wide, it is a good idea to make sure you are taking into account all of the major risks to your electronic protected health information (ePHI).
Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now