Vigil@nce - Cisco ASR: bypassing Top-Up via WSP
February 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can send a WSP (Wireless Session Protocol) packet to
Cisco ASR, in order to browse free of charge.
Impacted products: Cisco ASR, IOS XR
Severity: 2/4
Creation date: 22/01/2014
DESCRIPTION OF THE VULNERABILITY
Users of Cisco ASR 5000 Series Gateway GPRS Support Node (GGSN)
have to be redirected to a Top-Up Portal, in order to pay their
access.
However, an attacker can send a WSP (Wireless Session Protocol)
packet to Cisco ASR, in order to browse free of charge.
Technical details are unknown.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Cisco-ASR-bypassing-Top-Up-via-WSP-14116