Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Station-To-Station-Link (STSL) Transient Key (STK) during the PeerKey handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.
[
{
"product": "Wi-Fi Protected Access (WPA and WPA2)",
"vendor": "Wi-Fi Alliance",
"versions": [
{
"status": "affected",
"version": "WPA"
},
{
"status": "affected",
"version": "WPA2"
}
]
}
]
www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-007.txt
www.kb.cert.org/vuls/id/228519
www.securityfocus.com/bid/101274
www.securitytracker.com/id/1039576
www.securitytracker.com/id/1039577
www.securitytracker.com/id/1039581
access.redhat.com/security/vulnerabilities/kracks
cert-portal.siemens.com/productcert/pdf/ssa-901333.pdf
security.gentoo.org/glsa/201711-03
support.lenovo.com/us/en/product_security/LEN-17420
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171016-wpa
w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
www.krackattacks.com/