Summary:
A vulnerability relating to frame replay during device sleep has been identified in the Intel® Dual-Band and Tri-Band Wireless-AC Products. An attacker who can successfully establish a channel-based man-in-the-middle can potentially replay frames to impact the integrity or availability of already transmitted frames.
Description:
A vulnerability relating to frame replay during device sleep has been identified in the Intel® Dual-Band and Tri-Band Wireless-AC Products. The vulnerability arises from the firmware implementation of the Wi-Fi subsystem. An attacker who can successfully establish a channel-based man-in-the-middle can potentially replay frames to impact the integrity or availability of already transmitted frames. The replayed frames are then passed on to the operating system as new frames. This vulnerability was identified during compatibility testing with the Wi-Fi Alliance Detection Tool 2017 associated with CVE-2017-13080 and CVE-2017-13081, originally reported as part of INTEL-SA-00101.
This vulnerability also affects Intel® Active Management Technology which shares a code base with the affected wireless products.
An updated Intel® Management Engine 11.8 firmware and Wi-Fi Network Interface firmware that addresses this vulnerability was provided to OEM / System Manufacturers in late October 2017.
Affected products: