CCE-95230-9| Platform: cpe:/o:apple:mac_os_11, cpe:/o:apple:mac_os_x:10.15 | Date: (C)2020-12-08 (M)2023-07-04 |
"Drop Incoming ICMPv4 Timestamp Requests
ICMP Timestamp requests reveal information about the system and can be used to determine which operating system is installed. Precise time data can also be used to launch time based attacks against the system. Configuring the system to drop incoming ICMPv4 timestamp requests mitigates these risks."
Parameter:
[yes/no]
Technical Mechanism:
Fix:To disable ICMP timestamp responses, add the following line to /etc/sysctl.conf:
net.inet.icmp.timestamp=0
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : 7.2 | Attack Vector: NETWORK |
| Exploit Score: 3.9 | Attack Complexity: LOW |
| Impact Score: 2.7 | Privileges Required: NONE |
| Severity: HIGH | User Interaction: NONE |
| Vector: AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L | Scope: CHANGED |
| | Confidentiality: LOW |
| | Integrity: NONE |
| | Availability: LOW |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:71701 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:67511 |
