Full Disclosure mailing list archives
Re: (AUSCERT AA-2004.02) AUSCERT Advisory - Denial of Service Vulnerability in IEEE 802.11 Wireless Devices (fwd)
From: Valdis.Kletnieks () vt edu
Date: Thu, 13 May 2004 17:52:03 -0400
On Thu, 13 May 2004 20:36:47 +0200, Gunter Luyten <gunter.lists () haxor be> said:
The model of a shared communications channel is a fundamental factor in the effectiveness of an attack on this vulnerability. For this reason, it is likely that devices based on the newer IEEE 802.11a standard will not be affected by this attack where the physical layer uses Orthogonal Frequency Division Multiplexing (OFDM).That might be possible indeed, but this confirms to me that this "vulnerability" is based upon radio physics rather than shortcomings in the CSMA/CA protocol.
What they're saying here is "We'll not be affected by *THIS* attack (the one that transmits on 1 frequency per channel)". A moment's pondering will show that all you have to do is apply the same attack to the 48 OFDM subcarriers at once. In other words, just a little more challenging. (Remember, every single card that does OFDM has the circuitry to handle this already on it). So no, you can't take down an OFDM with a PDA that does 802.11b. You have to get a PDA that has an OFDM-capable card. :)
Attachment:
_bin
Description:
Current thread:
- (AUSCERT AA-2004.02) AUSCERT Advisory - Denial of Service Vulnerability in IEEE 802.11 Wireless Devices (fwd) Sean Batt (May 12)
- Re: (AUSCERT AA-2004.02) AUSCERT Advisory - Denial of Service Vulnerability Spiro Trikaliotis (May 13)
- Re: (AUSCERT AA-2004.02) AUSCERT Advisory - Denial of Service Vulnerability in IEEE 802.11 Wireless Devices (fwd) Jerome Poggi (May 13)
- Re: (AUSCERT AA-2004.02) AUSCERT Advisory - Denial of Service Vulnerability in IEEE 802.11 Wireless Devices (fwd) Valdis . Kletnieks (May 13)
- Re: (AUSCERT AA-2004.02) AUSCERT Advisory - Denial of Service Vulnerability in IEEE 802.11 Wireless Devices (fwd) Gunter Luyten (May 13)
- Re: (AUSCERT AA-2004.02) AUSCERT Advisory - Denial of Service Vulnerability in IEEE 802.11 Wireless Devices (fwd) Valdis . Kletnieks (May 13)
- <Possible follow-ups>
- Re:(AUSCERT AA-2004.02) AUSCERT Advisory - Denial of Service Vulnerability in IEEE 802.11 Wireless Devices (fwd) Ian Latter (May 12)