The Symantec Security Response Blog has raised concerns about possible attacks to mobile devices receiving DAB-IP (Digital Audio Broadcasting - IP) broadcasting services.
On such example is the recently introduced Virgin Lobster Windows Mobile Smartphone, capable of wirelessly receiving digital content provided by the BT Movio broadcast service.
According to the article, the DAB-IP is just another network connection on the device. With DAB-IP, content is basically being tunneled over IP, over DAB, to the handset.
The author is concerned about possible vulnerabilities in a series of different parts of the service, including the DAB protocol stack, the IP stack and media codecs.
One of the theoretical scenarios is the broadcast of spoof content, with a media codec attack attached to this spoofed content. The consequences of such attack would be a potential denial of service attack to any device around the source of this spoofed "transmission".
Of course such a theoretical could be targeted at any other device receiving this kind of broadcast.
