| GEN:SID | 1:414 |
| Message | ICMP IPV6 Where-Are-You undefined code |
| Summary | This event is generated when a network host generates an ICMP IPV6 Where-Are-You datagram with an undefined ICMP Code.
|
| Impact | ICMP Type 33 datagrams are not expected network traffic. Hosts generating ICMP Type 33 datagrams should be investigated for hostile activity.
|
| Detailed Information | ICMP Type 33 is an undocumented extension to RFC 1812 and RFC 792. Its current use it not defined by an approved RFC.
|
| Affected Systems | |
| Attack Scenarios | None known
|
| Ease of Attack | Numerous tools and scripts can generate this type of ICMP datagram.
|
| Corrective Action | Hosts generating ICMP Type 33 datagrams should be investigated for hostile activity.
|
| Additional References | None
|