Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 SCAN:XPROBE:XPROBE-BADCODE

Severity

 Low

Recommended

 No

Category

 SCAN

Keywords

 xprobe icmp echo code scan scanner

Release Date

 2003/05/21

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

SCAN: Xprobe ICMP ECHO with Bad ICMP Code


This signature detects an ICMP Echo Request packet generated by the Xprobe scanner. Attackers can use this packet during an Xprobe scan to determine the operating system running on the target host. Attackers can use this information to plan future, more targeted attacks.

Extended Description

This signature detects ICMP Echo Request packets with a legitimate ICMP type, except with bad ICMP code, sent by Xprobe. Remote attackers could use Xprobe to view confidential information to prepare for further attacks.

References

  • URL: http://www.juniper.net/security/auto/vulnerabilities/vuln2077.html

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out