CCE-90322-9Platform: cpe:/o:apple:mac_os_x:10.10 | Date: (C)2015-06-23 (M)2023-07-04 |
Drop Incoming ICMPv4 Timestamp Requests
ICMP Timestamp requests reveal information about the system and can be used to determine which operating system is installed. Precise time data can also be used to launch time based attacks against the system. Configuring the system to drop incoming ICMPv4 timestamp requests mitigates these risks.
Parameter:
[enable/disable]
Technical Mechanism:
To check if the system is configured to process ICMP timestamp requests, run the following command:
sysctl net.inet.icmp.timestamp
If the value is not set to '0', this is a finding.
CCSS Severity: | CCSS Metrics: |
CCSS Score : 7.2 | Attack Vector: NETWORK |
Exploit Score: 3.9 | Attack Complexity: LOW |
Impact Score: 2.7 | Privileges Required: NONE |
Severity: HIGH | User Interaction: NONE |
Vector: AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L | Scope: CHANGED |
| Confidentiality: LOW |
| Integrity: NONE |
| Availability: LOW |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:25094 |