Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.
Security alert for GPRS networks based on Nokia GGSN
Posted on 14-Jun-2003 11:42 | Filed under: News



A security flaw has been reported in the Nokia GGSN (Gateway GPRS support node) that could have lead to a Denial of Service (DoS) attack by hackers. The GGSN is the platform that exists between Gn and Gi networks within a GPRS network. @stake notified Nokia of the vulnerability, and Nokia has issued a software update to close the loophole. @stake says that there exists a vulnerability in the TCP stack that allows an attacker to cause the GGSN to kernel panic and shutdown. This potentially allows an attacker to crash all data connectivity within a GPRS based network. This vulnerability is exploited by sending a malformed IP packet with a TCP option of 0xFF over a cellphone to the affected network.

In a statement sent to all of Nokia GGSN customers, the company said "Under exceptional circumstances Nokia GGSN release 1 is potentially vulnerable to a "Denial Of Service" style of attack from a malicious user equipped with a computer and a mobile phone. When the vulnerability is exploited the GGSN restarts. There is no damage to the configuration, but some charging data may be lost. Changing a normal Access Point to tunneled (GRE or IP in IP) prevents the attacks from mobile user side.

As an interim measure operators can perform the following preventative configuration changes to their networks. Ensure that all IP packets with non standard IP options are dropped by boarder firewalls on the Gi interface. Within the Gn network ensure that the GTP aware firewall (if present) also drops all encapsulated IP packets with non standard IP options. This may introduce latency however it will mitigate against the attack until the patch has been fully deployed and tested.


More information: http://www.atstake.com/research/advisories/20...







Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:



Trending now »

Hot discussions in our forums right now:

Help, someone else was driving my car and had an accident, am I liable?
Created by MzAliceD, last reply by mattwnz on 17-Oct-2019 16:47 (47 replies)
Pages... 2 3 4


SKY announce Rugby rights to 2025
Created by JPNZ, last reply by rugrat on 17-Oct-2019 01:12 (82 replies)
Pages... 4 5 6


NZ Cricket to Spark Sport
Created by JPNZ, last reply by tdgeek on 17-Oct-2019 13:21 (136 replies)
Pages... 8 9 10


Jesse Mulligan says Three 'could close down entire station'
Created by JaseNZ, last reply by richms on 17-Oct-2019 17:18 (16 replies)
Pages... 2


PBTech and Education computers
Created by kiwifidget, last reply by gzt on 15-Oct-2019 21:46 (14 replies)

Real World usage is it worth paying more for the Fibre + 950 MBit plans or is a 100 MBit (200 MBit in CHCH) good enough
Created by DeepBlueSky, last reply by richms on 17-Oct-2019 16:33 (40 replies)
Pages... 2 3


ASB Bank Cheque clearance times !!
Created by maxeon, last reply by Handle9 on 16-Oct-2019 01:25 (41 replies)
Pages... 2 3


Mercury Energy - 2 year fixed price
Created by Dulouz, last reply by richms on 17-Oct-2019 09:59 (24 replies)
Pages... 2