Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the four-way handshake, allowing an attacker within radio range to spoof frames from access points to clients.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Information
Published : 2017-10-17 06:29
Updated : 2019-10-02 17:03
NVD link : CVE-2017-13079
Mitre link : CVE-2017-13079
JSON object : View
CWE
CWE-330
Use of Insufficiently Random Values
Products Affected
redhat
- enterprise_linux_desktop
- enterprise_linux_server
suse
- linux_enterprise_desktop
- openstack_cloud
- linux_enterprise_server
- linux_enterprise_point_of_sale
freebsd
- freebsd
w1.fi
- wpa_supplicant
- hostapd
canonical
- ubuntu_linux
opensuse
- leap
debian
- debian_linux