Stateful Analysis and Fuzzing of Commercial Baseband Firmware
Ali Ranjbar, Tianchang Yang, Kai Tu, Saaman Khalilollahi, Syed Rafiul HussainPennsylvania State
IEEE Symposium on Security and Privacy 2025 · Day 1 · Space and Cellular Security
In this compelling talk from IEEE S&P, Ali Ranjbar, alongside his colleagues from Pennsylvania State, unveiled **Loris**, a novel framework designed for the stateful analysis and fuzzing of commercial baseband firmware. The presentation meticulously detailed the inherent complexities and security vulnerabilities present in the dedicated processors responsible for handling cellular communications (2G to 5G) within our smartphones. Ranjbar underscored the critical nature of baseband security, highlighting how these often-overlooked components are susceptible to remote exploitation via malicious over-the-air (OTA) messages, leveraging memory-unsafe languages like C and C++ prevalent in their development.