Home page logo
/

bugtraq logo Bugtraq mailing list archives

Re: ISS Security Advisory: Wired-side SNMP WEP key exposure in 802.11b Access Points
From: "Matthew R. Potter" <mpotter () atpco com>
Date: Fri, 22 Jun 2001 16:56:44 -0400




From the AP-1000 manual:
Orinoco AP1000
read passswd: 'public'
read/write password: 'public'

Network Name: WaveLAN Network
Encryption: Disabled 


something's I noticed from breifly looking at the AP.

SNMP is enabled by default, the client and the AP speak via plain text... I
am pretty damn sure you can get the WEP key from this... Fireup tcpdump,
and watch the interaction between the windoez client and the AP.

M.



  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]