The Unites States Computer Emergency Readiness Team has announced a vulnerability in the
WPA-2 protocol. Not a vulnerability in client or server implementations of the protocol, but in the protocol itself. Vendors are working on patches, but this will take some time to implement on all the devices using the protocol.
More information can be found at the US-CERT's website as VU #228519.
To exploit the vulnerability in the protocol, the attacker will need to be within range OR have captured any traffic using the WPA-2 encryption scheme.
No comments:
Post a Comment