ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

The EPSS score is 0.00299.

Exploitation none

Automatable no

Technical Impact partial

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
n/a n/a affected
Version Status Constraints
n/a affected

Configuration 1 [-]

OR cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios:-:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
cpe:2.3:o:hp:tru64:-:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
cpe:2.3:o:ibm:os2:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:o:novell:netware:-:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:-:*
cpe:2.3:o:sco:sco_unix:-:*:*:*:*:*:*:*
cpe:2.3:o:sgi:irix:-:*:*:*:*:*:*:*
cpe:2.3:o:windriver:bsdos:-:*:*:*:*:*:*:*

No data.

No data.

Project Subscriptions

Vendors Products
Apple Subscribe
Mac Os X Subscribe
Macos Subscribe
Cisco Subscribe
Ios Subscribe
Hp Subscribe
Hp-ux Subscribe
Tru64 Subscribe
Ibm Subscribe
Aix Subscribe
Os2 Subscribe
Linux Subscribe
Linux Kernel Subscribe
Microsoft Subscribe
Windows Subscribe
Novell Subscribe
Netware Subscribe
Oracle Subscribe
Solaris Subscribe
Sco Subscribe
Sco Unix Subscribe
Sgi Subscribe
Irix Subscribe
Windriver Subscribe
Bsdos Subscribe
Advisories
Source ID Title
EUVD EUVD EUVD-1999-0522 ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
http://descriptions.securescout.com/tc/11010 cve-icon cve-icon
http://descriptions.securescout.com/tc/11011 cve-icon cve-icon
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705 cve-icon cve-icon
http://kb.vmware.com/selfservice/microsites/search.do?cmd=displayKC&externalId=1434 cve-icon cve-icon
http://www.osvdb.org/95 cve-icon cve-icon
https://exchange.xforce.ibmcloud.com/vulnerabilities/306 cve-icon cve-icon
https://exchange.xforce.ibmcloud.com/vulnerabilities/322 cve-icon cve-icon
https://kc.mcafee.com/corporate/index?page=content&id=SB10053 cve-icon cve-icon
https://support.f5.com/csp/article/K15277 cve-icon
History

Thu, 28 May 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Sun, 13 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00986}

 epss

{'score': 0.00933}

Mon, 17 Mar 2025 15:45:00 +0000

Type Values Removed Values Added
References

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-05-28T17:44:18.231Z

Reserved: 1999-06-07T00:00:00.000Z

Link: CVE-1999-0524

cve-icon Vulnrichment

Updated: 2025-03-17T15:03:25.141Z

cve-icon NVD

Status : Modified

Published: 1997-08-01T04:00:00.000

Modified: 2026-05-28T18:16:21.263

Link: CVE-1999-0524

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses