Wireless Vulnerabilities & Exploits
Wireless Vulnerabilities & Exploits
WVE ID: WVE-2008-0011
Type: Vulnerability
Status: Candidate
Classification:
Input Manipulation
Description:
A condition can be triggered on certain access points to transmit de-authentication and disassociation frames to all clients.
Discussion:
By sending management frames with forged fields, vulnerable access points will return deauthenticate or disassociate frames to all clients. Triggers that can cause this condition include the use of broadcast or multicast MAC address in the source address field.
Credits
Author:
Amit
Vartak
(amit.vartak@airtightnetworks.com)
: Airtight Networks
Author:
J V R
Murthy
(Murthy.jvr@airtightnetworks.com)
: Airtight Networks
Author:
Md Sohail
Ahmad
(md.ahmad@airtightnetworks.com)
: Airtight Networks
References
URL:
http://www.defcon.org/images/defcon-16/dc16-presentations/defcon-16-ahmad.pdf
URL:
http://www.airtightnetworks.com/home/resources/knowledge-center/wlan-self-dos.html
URL:
http://www.airtightnetworks.com/home/resources/knowledge-center/wlan-self-dos.html
Released: 2008-08-01
Submitter
Nicholas
DePetrillo
(ndepetrillo@arubanetworks.com)
: Aruba Networks
Submitted: Wed Sep 17 13:07:21 -0700 2008
Candidate Date: Wed Sep 17 13:13:27 -0700 2008
