CVE-2005-3253

Severity

75%

Complexity

99%

Confidentiality

106%

Wireless Access Points (AP) for (1) Avaya AP-3 through AP-6 2.5 to 2.5.4, and AP-7/AP-8 2.5 and other versions before 3.1, and (2) Proxim AP-600 and AP-2000 before 2.5.5, and Proxim AP-700 and AP-4000 after 2.4.11 and before 3.1, use a static WEP key of "12345", which allows remote attackers to bypass authentication.

Wireless Access Points (AP) for (1) Avaya AP-3 through AP-6 2.5 to 2.5.4, and AP-7/AP-8 2.5 and other versions before 3.1, and (2) Proxim AP-600 and AP-2000 before 2.5.5, and Proxim AP-700 and AP-4000 after 2.4.11 and before 3.1, use a static WEP key of "12345", which allows remote attackers to bypass authentication.

CVSS 2.0 Base Score 7.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P).

Overview

Type

Avaya Wireless

First reported 19 years ago

2005-12-16 11:03:00

Last updated 13 years ago

2011-03-08 02:26:00

Affected Software

Avaya Wireless AP-3 2.5

2.5

Avaya Wireless AP-3 2.5.4

2.5.4

Avaya Wireless AP-4 2.5

2.5

Avaya Wireless AP-4 2.5.4

2.5.4

Avaya Wireless AP-5 2.5

2.5

Avaya Wireless AP-5 2.5.4

2.5.4

Avaya Wireless AP-6 2.5

2.5

Avaya Wireless AP-6 2.5.4

2.5.4

Avaya Wireless AP-7 2.5

2.5

Avaya Wireless AP-8 2.5

2.5

References

http://keygen.proxim.com/support/cs/Documents/802.1x_vulnerability.pdf

18047

Patch, Vendor Advisory

18057

http://support.avaya.com/elmodocs2/security/ASA-2005-233.pdf

Patch, Vendor Advisory

22091

ADV-2005-2931

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.