Conditions préalables
The attacker must have knowledge of the target’s mobile phone number.
Compétences requises
Open source and commercial tools are available for this attack.
Atténuations
Frequent changing of mobile number.
Faiblesses connexes
CWE-ID |
Nom de la faiblesse |
|
Insertion of Sensitive Information Into Sent Data The code transmits data to another actor, but a portion of the data includes sensitive information that should not be accessible to that actor. |
Références
REF-487
Location Leaks on the GSM Air Interface
Denis Foo Kune, John Koelndorfer, Nicholas Hopper, Yongdae Kim.
https://www-users.cs.umn.edu/~hoppernj/celluloc.pdf
Soumission
Nom |
Organisation |
Date |
Date de publication |
CAPEC Content Team |
The MITRE Corporation |
2015-11-09 +00:00 |
|
Modifications
Nom |
Organisation |
Date |
Commentaire |
CAPEC Content Team |
The MITRE Corporation |
2018-07-31 +00:00 |
Updated Attack_Motivation-Consequences, Description Summary, References |