Home page logo

bugtraq logo Bugtraq mailing list archives

Re: ISS Security Advisory: Wired-side SNMP WEP key exposure in 802.11b Access Points
From: "Matthew R. Potter" <mpotter () atpco com>
Date: Fri, 22 Jun 2001 16:56:44 -0400

From the AP-1000 manual:
Orinoco AP1000
read passswd: 'public'
read/write password: 'public'

Network Name: WaveLAN Network
Encryption: Disabled 

something's I noticed from breifly looking at the AP.

SNMP is enabled by default, the client and the AP speak via plain text... I
am pretty damn sure you can get the WEP key from this... Fireup tcpdump,
and watch the interaction between the windoez client and the AP.


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]