Wireless Security
WPA Migration Mode: WEP is back to haunt you... Aug 05 2010 03:39PM
Leandro Meiners (leandro meiners coresecurity com)
Hi list!

Last week Diego Sor and I presented at Black Hat an attack against
Ciscoâ??s WPA Migration Mode, which is a proprietary feature of Cisco
access points that enables both WPA and WEP clients to associate to an
access point using the same Service Set Identifier (SSID). Our attack
allows cracking the WEP key (even when there are no WEP stations using
the network).

The following link points to the slides, a whitepaper with some more
technical details and patches for aircrack-ng that implement our attack,
and for Kismet that add the capability to detect access points
configured in WPA Migration Mode.

http://corelabs.coresecurity.com/index.php?module=Wiki&action=view&type=
publication&name=WPA_MIGRATION_MODE

Cheers,

Leandro.-
--
Leandro Federico Meiners
Senior Security Consultant
Core Security Technologies
www.coresecurity.com

GnuPG key fingerprint:
2A14 05A2 DF77 79D1 9F72
6005 623B BA17 7D9A 9FF4

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus