Nokia Gateway GPRS Support Node (GGSN) Can Be Crashed By Remote Users
|
|
SecurityTracker Alert ID: 1006964 |
|
SecurityTracker URL: http://securitytracker.com/id/1006964
|
|
CVE Reference:
CAN-2003-0368
(Links to External Site)
|
Date: Jun 10 2003
|
Impact:
Denial of service via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): GGSN release 1
|
Description:
A denial of service vulnerability was reported in the Nokia Gateway GPRS Support Node (GGSN). A remote user can trigger a kernel panic.
@stake reported that the GGSN contains a flaw in the TCP stack implementation. A remote user can send a specially crafted TCP packet with TCP option 0xFF via a mobile phone to cause the system to crash, stopping data connectivity on the GPRS-based network.
It is reported that the GGSN will automatically restart after the crash. The configuration data will not be affected, but some billing data may be lost, the report indicated.
According to the report, all affected operators have been notified and have upgraded.
[Editor's note: Regrettably, @stake wishes to restrict the flow of information regarding this flaw and does not permit us to post the contents of their advisory. You can view their advisory at: www.atstake.com/research/advisories/2003/a060903-1.txt]
|
Impact:
A remote user can cause the system to crash and reboot. Some billing data may be lost. A remote user can issue a continual attack to cause sustained denial of service conditions.
|
Solution:
The vendor has issued a fix in IPSO version 3.4 and later versions. GGSN release 2 is not vulnerable, according to the vendor.
|
Vendor URL: www.nokia.com/networks/product_catalog/pc_product_highlights/1,6929,,00.html?prod_id=NWS00032&path=tmcat&mcat=45781&scat=48249&tech_id=521 (Links to External Site)
|
Cause:
Exception handling error
|
Underlying OS:
|
|
Message History:
None.
|
Source Message Contents
|
|
|
[Original Message Not Available for Viewing]
|
|
