Overview

This article guides you on how to fix the vulnerability reported in OVAL 22538 (CVE-1999-0510):

A router or firewall allows source routed packets from arbitrary hosts.

Resolution

1. Open the Registry Editor.
2. Create a DWORD (32-bit) with the name DisableIPSourceRouting with a value of 2 in the following two registry keys of the machine the vulnerability has been reported on:
   • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters
   • HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters
3. Reboot the computer.
4. Re-scan the computer.

NOTE: Create a DWORD (32-bit) regardless of the architecture of the operating system.