Bugtraq mailing list archives

Re: ISS Security Advisory: Wired-side SNMP WEP key exposure in 802.11b Access Points

From: "Matthew R. Potter" <mpotter () atpco com>
Date: Fri, 22 Jun 2001 16:56:44 -0400

From the AP-1000 manual:

Orinoco AP1000
read passswd: 'public'
read/write password: 'public'

Network Name: WaveLAN Network
Encryption: Disabled 


something's I noticed from breifly looking at the AP.

SNMP is enabled by default, the client and the AP speak via plain text... I
am pretty damn sure you can get the WEP key from this... Fireup tcpdump,
and watch the interaction between the windoez client and the AP.

M.

Current thread:

ISS Security Advisory: Wired-side SNMP WEP key exposure in 802.11 b Access Points ISS XForce (Jun 20)
- Re: ISS Security Advisory: Wired-side SNMP WEP key exposure in 802.11b Access Points Matthew Potter (Jun 22)
  - Re: ISS Security Advisory: Wired-side SNMP WEP key exposure in 802.11b Access Points Brandon S. Allbery KF8NH (Jun 25)
    - Re: ISS Security Advisory: Wired-side SNMP WEP key exposure in 802.11b Access Points hendy (Jun 29)
  - Re: ISS Security Advisory: Wired-side SNMP WEP key exposure in 802.11b Access Points Matthew R. Potter (Jun 25)