Maybe the Phone System Surveillance Vulnerabilities Will Be Fixed

It seems that the FCC might be fixing the vulnerabilities in SS7 and the Diameter protocol: On March 27 the commission asked telecommunications providers to weigh in and detail what they are doing to prevent SS7 and Diameter vulnerabilities from being misused to track consumers locations. The FCC...

CVE-2018-5522

On F5 BIG-IP 13.0.0, 12.0.0-12.1.2, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1, when processing DIAMETER transactions with carefully crafted attribute-value pairs, TMM may crash...

Wireshark DIAMETER parser denial of service vulnerability

Wireshark is the most popular network protocol parser. In Wireshark versions 2.0.x before 2.0.1 and 1.12.x before 1.12.9, the function dissectdiameterbaseframedipv6prefix in epan/dissectors/packet-diameter.c in the DIAMETER parser does not properly validate the IPv6 prefix length. prefix does not...