OMG, Not Again: New Mobile Internet Protocol Vulnerabilities

Every now and then a security researcher “discovers” a tunneling protocol designed to be used over a protected transport core and “declares it vulnerable” assuming the attacker can connect to that transport network… even though the protocol was purposefully designed that way, and everyone with a bit of clue knew the whole story years ago (and/or it’s even documented in the RFC).

It was MPLS decades ago, then VXLAN a few years ago, and now someone “found” a “high-impact vulnerability” in GPRS Tunnel Protocol. Recommended countermeasures: whitelist-based IP filtering. Yeah, it’s amazing what a wonderful new tool they found.

Unfortunately (for the rest of us), common sense never generated headlines on Hacker News (or anywhere else).

Recent posts in the same categories

1 comments:

  1. Joro Petrov 27 February 2025 12:36

    On the topic of whitelist-based IP filtering what is the best approach in scanning public IPs that are candidates? This is for whitelisting with the intend to reject or allow the address. Have you run into tools, sites or some places that are legit and do the job right.

    Once the process is defined and set the fun part will be to automate or script it further.

    Thank you in advance

Add comment
Home
Sidebar