Home > slashdot > Wi-Fi WPA2 Vulnerability Found

Wi-Fi WPA2 Vulnerability Found

July 24th, 2010 07:43 admin Leave a comment Go to comments

BobB-nw sends along news based on yet another press release in advance of the Black Hat conference: a claimed vulnerability in WPA2 Enterprise that leaves traffic open to a malicious insider. “…wireless security researchers say they have uncovered a vulnerability in the WPA2 security protocol, which is the strongest form of Wi-Fi encryption and authentication currently standardized and available. Malicious insiders can exploit the vulnerability, named ‘Hole 196′ by the researcher who discovered it at wireless security company AirTight Networks. The moniker refers to the page of the IEEE 802.11 Standard (Revision, 2007) on which the vulnerability is buried. Hole 196 lends itself to man-in-the-middle-style exploits, whereby an internal, authorized Wi-Fi user can decrypt, over the air, the private data of others, inject malicious traffic into the network, and compromise other authorized devices using open source software, according to AirTight. ‘There’s nothing in the standard to upgrade to in order to patch or fix the hole,’ says Kaustubh Phanse, AirTight’s wireless architect who describes Hole 196 as a ‘zero-day vulnerability that creates a window of opportunity’ for exploitation.” Wi-Fi Net News has some more detail and speculation.

Source: Wi-Fi WPA2 Vulnerability Found

Related Articles:

  1. WPA2 Wireless Security Crackable WIth “Relative Ease”
  2. WPA/WPA2 Cracking With CPUs, GPUs, and the Cloud
  3. Google Fixes Glass Vulnerability To Malicious QR Codes
  4. First Apps Targeting Android Key Vulnerability Found in the Wild
  5. VPN Encryption Vulnerability On Android
blog comments powered by Disqus