Author Topic: WiFi WPS-PIN vulnerability (Read 841 times)

silicon_toad2000 · « **on:** January 02, 2012, 11:55:20 am »

someone at overclockers-au came across this article https://threatpost.com/en_us/blogs/wifi-protected-setup-flaw-can-lead-compromise-router-pins-122711

Quote

When the PIN authentication fails the access point will send an EAP-NACK message back to the client. The EAP-NACK messages are sent in a way that an attacker is able to determine if the first half of the PIN is correct. Also, the last digit of the PIN is known because it is a checksum for the PIN. This design greatly reduces the number of attempts needed to brute force the PIN. The number of attempts goes from 108 to 104 + 103 which is 11,000 attempts in total,

As if there's not already enough things to lock down.

Will · « **Reply #1 on:** January 14, 2012, 11:29:00 am »

Seems the 2 tools available work quite well, although it did take a while. I used one of my own access points with the default configuration btw which was a netgear(virgin media branded) router with wps enabled by default

Author Topic: WiFi WPS-PIN vulnerability (Read 841 times)

silicon_toad2000

WiFi WPS-PIN vulnerability

Will

Re: WiFi WPS-PIN vulnerability