|
-
December 30th, 2011, 01:38 PM
#1
WiFi vuln.
Something Interesting i happened upon, figured i'd post about it. 
Disable WPS if you can, guys.
Strictly speaking, the vulnerability lies within the "WPS – PIN" part of the WPS specification.. but since this is the section of WPS that allows connections WITHOUT physical intervention at the access point itself (in the form of pressing a button) - it's more than just theoretical.
HERE - via Slashdot..
"When the PIN authentication fails the access point will send an EAP-NACK message back to the client. The EAP-NACK messages are sent in a way that an attacker is able to determine if the first half of the PIN is correct. Also, the last digit of the PIN is known because it is a checksum for the PIN. This design greatly reduces the number of attempts needed to brute force the PIN. The number of attempts goes from 108 to 104 + 103 which is 11,000 attempts in total,"
Last edited by HYBR|D; December 30th, 2011 at 01:42 PM.
Similar Threads
-
By ByTeWrangler in forum Wireless Security
Replies: 11
Last Post: August 23rd, 2009, 09:30 PM
-
By Modderfokker in forum AntiOnline's General Chit Chat
Replies: 4
Last Post: January 6th, 2004, 12:12 AM
-
By sumdumguy in forum Tech Humor
Replies: 1
Last Post: October 18th, 2003, 03:30 AM
-
By alanmott in forum Network Security Discussions
Replies: 4
Last Post: April 30th, 2003, 01:54 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote