I am scanning a host in our network with Nexpose and one of the vulnerabilities reported is
Received UDP packet with IP ID of zero:
IPv4 SRC[10.0.0.5] TGT[127.0.0.1]
TOS[192] TTL[64] Flags[40] Proto[17] ID[0] FragOff[0]
HDR-LENGTH[20] TOTAL-LENGTH[76] CKSUM[45199]
UDP SRC-PORT[123] TGT-PORT[47454] CKSUM[35227]
RAW DATA [48]:
1A030AE800000C9E00001A9A6BAAE008 ...�...�...�k��.
DA15B7A195FE52CDC6F15EDB78000000 �.����R���^�x...
DA15BC9BBD4C60B5DA15BC9BBD511C4F �.���L`��.���Q.O
I don't see anything to resolve this. How can I resolve this and close it out? I don't see a great deal of information for mitigation on this and ironically, this is the only host that I've seen reporting this. It's not end of the world serious, but it would allow an attacker to fingerprint my host.