UDP IP ID Zero

I'm running a vulnerability scan on my Cisco router and it has told me that the router is responding with a UDP packet whose IP ID was zero. I'm not certain what this means but I'd like to eliminate the message by patching the hole. However I can't find anything online telling me how to do it. Does anyone know?
LVL 21
Russ SuterAsked:
Who is Participating?
 
asavenerCommented:
This is not a vulnerability, or attack vector, but it is related to the ability to fingerprint the operating system running on a network device.

First option is to upgrade to the latest IOS version available for the router.  This may or may not eliminate the result.

Next option to to block or filter out any traffic that is not explicitly desired.  (In particular, I would recommend blocking traffic to the IP address of the router itself, unless such traffic is desired, such as management and ICMP traffic)

Final option is to just live with it, as most network scanners will detect it as Linux 2.4.x.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0510
0
 
Russ SuterAuthor Commented:
thanks for the information. Based upon that I can rule out the item on the report and justify it.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.