Threat Category: USSD
ID: CEL-23
Threat Description: Data traffic interception via adversary-in-the-middle (AiTM) techniques.
Threat Origin
Zimperium zLabs is Raising the Volume: New Vulnerability Processing MP3/MP4 Media 1
Exploit Examples
Not Applicable
CVE Examples
Not Applicable
Possible Countermeasures
Network level air interface encryption for user-plane traffic.
References
Z. Avraham, J. Drake, and N. Bassen, “Zimperium zLabs is Raising the Volume: New Vulnerability Processing MP3/MP4 Media”, blog, 1 Oct. 2015; https://blog.zimperium.com/zimperium-zlabs-is-raising-the-volume-new-vulnerability-processing-mp3mp4-media/ [accessed 8/29/2016] ↩