'ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.'
This is not a security risk.
In compliance with best practices described RFC 792 and others, ICMP is implemented accordingly.
No action required.
search?q=clearos%2C%20clearos%20content%2C%20CVE%2C%20CVE1999%2C%20maintainer_dloper%2C%20maintainerreview_x%2C%20keywordfix&btnI=lucky