Name Sniffing Network Traffic
Summary An attacker monitoring network traffic between nodes of a public or multicast network. The attacker need not be able to prevent reception or change content but must simply be able to observe and read the traffic. The attacker might precipitate or indirectly influence the content of the observed transaction, but the attacker is never the intended recipient of the information. This differs from other sniffing attacks in that it is over a public network rather via some other communications channel, such as radio.
Prerequisites Any target that transmits readable data over a public or multicast network could be attacked in this way.
Solutions Cryptographic techniques that render a data-stream unreadable can thwart this type of attack.
Related Weaknesses
CWE ID Description
CWE-311 Missing Encryption of Sensitive Data
Back to Top