ICMP netmask response
Description
The remote host responded to an ICMP netmask request. The ICMP netmask response contains the remote host's network mask (on the interface that processed the request). This information can be used by a hacker to accurately map your subnet structures, determining the broadcast addresses in use, and which routers are responsible for which subnets. This may make it easier for them to launch a "SMURF attack" using broadcast-directed ICMP ping packets.
Solution(s)
- generic-icmp-netmask-block-disable-aix
- generic-icmp-netmask-block-disable-bsd
- generic-icmp-netmask-block-disable-general
- generic-icmp-netmask-block-disable-hpux
- generic-icmp-netmask-block-disable-ios
- generic-icmp-netmask-block-disable-irix
- generic-icmp-netmask-block-disable-linux
- generic-icmp-netmask-block-disable-nt
- generic-icmp-netmask-block-disable-pix
- generic-icmp-netmask-block-disable-solaris
- generic-icmp-netmask-block-disable-w2k-xp
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center