CVE-2008-5230

Severity

68%

Complexity

86%

Confidentiality

106%

The impact of this vulnerability has yet to be determined. The full list of affected platforms is subject to change. The NVD will continue to monitor this vulnerability and adjust the configurations as needed.

The Temporal Key Integrity Protocol (TKIP) implementation in unspecified Cisco products and other vendors' products, as used in WPA and WPA2 on Wi-Fi networks, has insufficient countermeasures against certain crafted and replayed packets, which makes it easier for remote attackers to decrypt packets from an access point (AP) to a client and spoof packets from an AP to a client, and conduct ARP poisoning attacks or other attacks, as demonstrated by tkiptun-ng.

The impact of this vulnerability has yet to be determined. The full list of affected platforms is subject to change. The NVD will continue to monitor this vulnerability and adjust the configurations as needed.

CVSS 2.0 Base Score 6.8. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:P/I:P/A:P).

Overview

First reported 16 years ago

2008-11-25 23:30:00

Last updated 16 years ago

2008-12-03 05:00:00

Affected Software

Cisco IOS

References

http://arstechnica.com/articles/paedia/wpa-cracked.ars

http://dl.aircrack-ng.org/breakingwepandwpa.pdf

Exploit

[dailydave] 20081107 All Ur WiFi(WPA) R Belong 2 PacSec

http://radajo.blogspot.com/2008/11/wpatkip-chopchop-attack.html

http://trac.aircrack-ng.org/svn/trunk/src/tkiptun-ng.c

Exploit

http://www.aircrack-ng.org/doku.php?id=tkiptun-ng

20081121 Cisco Response to TKIP Encryption Weakness

32164

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.