Provided by Aanval (Snort & Syslog Intrusion Detection and Correlation Engine) www.aanval.com
--
GEN:SID | 1:414 |
Message | ICMP IPV6 Where-Are-You undefined code |
Summary | This event is generated when a network host generates an ICMP IPV6 Where-Are-You datagram with an undefined ICMP Code. |
Impact | ICMP Type 33 datagrams are not expected network traffic. Hosts generating ICMP Type 33 datagrams should be investigated for hostile activity. |
Detailed Information | ICMP Type 33 is an undocumented extension to RFC 1812 and RFC 792. Its current use it not defined by an approved RFC. |
Affected Systems | |
Attack Scenarios | None known |
Ease of Attack | Numerous tools and scripts can generate this type of ICMP datagram. |
Corrective Action | Hosts generating ICMP Type 33 datagrams should be investigated for hostile activity. |
Additional References | None |
--
DID:776723
--
http://www.aanval.com/