Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
391
Views
0
Helpful
1
Replies

VMS Vulnerability Alert 5520 ver 9.1(5)

wilsonbolanos
Level 1
Level 1

‎03-02-2015 09:09 AM - edited ‎03-11-2019 10:34 PM

Scan:FTP

Endpoint: *.*.*.* (Public ip)

Vulnerability: TCP timestamp response

Severity: 1

Certainty: Confirmed

 

DESCRIPTION

 

 

  The remote host responded with a TCP timestamp.  The TCP timestamp response

  can be used to approximate the remote host's uptime, potentially aiding in

  further attacks.  Additionally, some operating systems can be fingerprinted

  based on the behavior of their TCP timestamps.

 

How do we disable TCP Timestamps on this version on the ASA?

 

 

 

1 person had this problem
Labels:
0 Helpful
1 Reply 1

Vibhor Amrodia
Cisco Employee
Cisco Employee

‎03-03-2015 03:05 AM

Hi,

You can use TCP normalizer for this:-

http://www.cisco.com/c/en/us/td/docs/security/asa/asa84/asdm64/configuration_guide/asdm_64_config/conns_connlimits.html#wp1091018

Thanks and Regards,

Vibhor Amrodia

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card