96 matches found
The vulnerability of the OpenSUSE operating system, the Wi-Fi Protected Access Point software WPA Supplicant, and the Jouni Malinen-hosted Hostapd software allow a intruder to trigger a service failure.
The vulnerability of the WPS UPnP function in the openSUSE operating system, the Wi-Fi protected access client WPA Supplicant, and the Jouni Malinen-hostapd software access point is caused by buffer overflow. Exploiting this vulnerability can allow a malicious actor to cause a service failure by...
The vulnerability of the WPS protocol, which allows a hacker to obtain the WPA PSK key
Vulnerability exists in the WPS protocol, which is designed for simplified setup of secure Wi-Fi connections. During authentication, when checking the PIN code, the Wi-Fi device returns various EAP-NACK messages, depending on which half of the entered PIN code is incorrect. This allows a remote...
hostapd and wpa_supplicant denial of service vulnerabilities (CNVD-2015-03932)
hostapd is a daemon that implements a wireless access point AP and authentication server. wpasupplicant is a daemon that runs in the background, developed by software developer Jouni Malinen and other contributors, and is primarily used to support the WEP, WPA/WPA2 and WAPI wireless protocols and...
UBUNTU-CVE-2015-4141
The WPS UPnP function in hostapd, when using WPS AP, and wpasupplicant, when using WPS external registrar ER, 0.7.0 through 2.4 allows remote attackers to cause a denial of service crash via a negative chunk length, which triggers an out-of-bounds read or heap-based buffer overflow...
Reaver WiFi Protected Setup Exploit
No description provided by source. Exploit Title: Reaver WiFi Protected Setup Exploit Google Dork: Date: 28 December 2011 Author: [email protected] Software Link: http://www.tacnetsol.com/products/ Version: All 802.11 access points implementing WiFi Protected Setup and have it enabled. Teste...
Sitecom WLM-2501 - Multiple Cross-Site Request Forgery Vulnerabilities
+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Sitecom WLM-2501 new Multiple CSRF Vulnerabilities Date : 22-03-2012 Author : Ivano Binetti http://www.ivanobinetti.com Vendor site :...
CVE-2011-5053
The Wi-Fi Protected Setup WPS protocol, when the "external registrar" authentication method is used, does not properly inform clients about failed PIN authentication, which makes it easier for remote attackers to discover the PIN value, and consequently discover the Wi-Fi network password or...
CVE-2011-5053
The Wi-Fi Protected Setup WPS protocol, when the "external registrar" authentication method is used, does not properly inform clients about failed PIN authentication, which makes it easier for remote attackers to discover the PIN value, and consequently discover the Wi-Fi network password or...
CVE-2011-5053
The CVE-2011-5053 issue concerns Wi-Fi Protected Setup (WPS) external registrar PIN authentication, where failed PINs leak information via EAP-NACK messages, enabling an attacker within range to brute-force the 8-digit PIN and obtain the network password or reconfigure the AP. Documented impact i...
Reaver - WiFi Protected Setup (WPS)
Exploit Title: Reaver WiFi Protected Setup Exploit Google Dork: Date: 28 December 2011 Author: [email protected] Software Link: http://www.tacnetsol.com/products/ Version: All 802.11 access points implementing WiFi Protected Setup and have it enabled. Tested on: Access points from Linksys,...
Reaver - WiFi Protected Setup (WPS)
Reaver - WiFi Protected Setup WPS Exploit Title: Reaver WiFi Protected Setup Exploit Google Dork: Date: 28 December 2011 Author: [email protected] Software Link: http://www.tacnetsol.com/products/ Version: All 802.11 access points implementing WiFi Protected Setup and have it enabled. Tested...
Attack Tool Released for WPS PIN Vulnerability
Just a day after security researcher Stefan Viehbock released details of a vulnerability in the WiFi Protected Setup WPS standard that enables attackers to recover the router PIN, a security firm has published an open-source tool capable of exploiting the vulnerability. The tool, known as Reaver,...
Reaver brute force attack Tool, Cracking WPA in 10 Hours
Reaver brute force attack Tool, Cracking WPA in 10 Hours The WiFi Protected Setup protocol is vulnerable to a brute force attack that allows an attacker to recover an access point's WPS pin, and subsequently the WPA/WPA2 passphrase, in just a matter of hours. Reaver is a WPA attack tool developed...
Easy Router PIN Guessing with new WiFi Setup vulnerability
Easy Router PIN Guessing with new WiFi Setup vulnerability There is a newly discovered vulnerability in the WiFi Protected Setup standard that reduces the number of attempts it would take an attacker to brute-force the PIN for a wireless router's setup process. The flaw results in too much...
WiFi Protected Setup Flaw Can Lead to Compromise of Router PINs
The US-CERT is warning about a vulnerability in the WiFi Protected Setup standard that reduces the number of attempts it would take an attacker to brute-force the PIN for a wireless router’s setup process. The flaw results in too much information about the PIN being returned to an attacker and...
WiFi Protected Setup (WPS) PIN brute force vulnerability
Overview The WiFi Protected Setup WPS PIN is susceptible to a brute force attack. A design flaw that exists in the WPS specification for the PIN authentication significantly reduces the time required to brute force the entire PIN because it allows an attacker to know when the first half of the 8...