CVE-1999-0524

Name of the Vulnerable Software and Affected Versions Mac OS versions (affected versions not specified) Cisco IOS versions (affected versions not specified) HP-UX versions (affected versions not specified) Tru64 UNIX versions (affected versions not specified) AIX versions (affected versions not specified) OS/2 versions (affected versions not specified) Windows versions (affected versions not specified) Novell Netware versions (affected versions not specified) Solaris versions (affected versions not specified) IRIX versions (affected versions not specified) SCO Unix versions (affected versions not specified) bsdos versions (affected versions not specified) Linux versions (affected versions not specified)

Description The issue is related to the fact that ICMP information, such as netmask and timestamp, is allowed from arbitrary hosts. Exploitation of this issue may allow an attacker to disclose protected information.

Recommendations For Mac OS, consider restricting access to ICMP information to minimize the risk of exploitation. For Cisco IOS, consider disabling the reception of ICMP information from arbitrary hosts until a fix is available. For HP-UX, restrict access to the netmask and timestamp information in ICMP packets. For Tru64 UNIX, consider implementing firewall rules to block ICMP packets from unknown hosts. For AIX, restrict access to ICMP information to trusted hosts only. For OS/2, consider disabling the ICMP protocol temporarily until a patch is available. For Windows, restrict access to the netmask and timestamp information in ICMP packets. For Novell Netware, consider implementing firewall rules to block ICMP packets from unknown hosts. For Solaris, restrict access to ICMP information to trusted hosts only. For IRIX, consider disabling the reception of ICMP information from arbitrary hosts until a fix is available. For SCO Unix, restrict access to the netmask and timestamp information in ICMP packets. For bsdos, consider implementing firewall rules to block ICMP packets from unknown hosts. For Linux, restrict access to ICMP information to trusted hosts only.