CVE-1999-0524 - ICMP Timestamp Request Remote Date Disclosure vulnerability in Greenplum DB
search cancel

CVE-1999-0524 - ICMP Timestamp Request Remote Date Disclosure vulnerability in Greenplum DB

book

Article ID: 384360

calendar_today

Updated On:

Products

Greenplum VMware Tanzu Greenplum Pivotal Data Suite Non Production Edition VMware Tanzu Data Suite VMware Tanzu Data Suite

Issue/Introduction

For details on the vulnerability see : CVE-1999-0524

The remote host answers to an ICMP timestamp request.

This allows an attacker to know the date that is set on the targeted machine, which may assist an unauthenticated, remote attacker in defeating time-based authentication protocols.

Environment

All versions of Greenplum DB.

Resolution

Greenplum Database(GPDB) clusters require ICMP to be enabled on the interconnect network.

GPDB uses "ping", which uses ICMP, to check that hosts are up and contactable within the cluster.

See Enabling iptables for further information on what traffic is required between the hosts in the cluster.