Re: Wireless Pent-Test

From: Raistlin (raistlin@gioco.net)
Date: Tue Oct 07 2003 - 05:00:51 EDT

• Next message: cdowns: "dcom on wyse WinCE systems"
• Previous message: Pro Biswas: "BID database"
• In reply to: Matthew Leeds: "Re: Wireless Pent-Test"
• Next in thread: Cedric Blancher: "Re: Wireless Pent-Test"
• Reply: Cedric Blancher: "Re: Wireless Pent-Test"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

> OK, I keep hearing about how simple it is to crack WEP using a variety of
tools.

That is true.

> I also keep hearing that some WLAN hardware manfacturers have modified
> their firmware to eliminate the generation of 'weak' WEP keys.

That is also true, altough you are confusing initialization vectors and
kets, but these two vulnerabilities are NOT correlated.

WEP (RC4, in fact) can be cracked, AND it also suffers from weak
initialization vectors.

Actually, removing the weak IV subspace, corrects the second problem but
makes the first attack even easier.

R.

---------------------------------------------------------------------------
Tired of constantly searching the web for the latest exploits?
Tired of using 300 different tools to do one job?
Get CORE IMPACT and get some rest.
www.coresecurity.com/promos/sf_ept2
----------------------------------------------------------------------------

• Next message: cdowns: "dcom on wyse WinCE systems"
• Previous message: Pro Biswas: "BID database"
• In reply to: Matthew Leeds: "Re: Wireless Pent-Test"
• Next in thread: Cedric Blancher: "Re: Wireless Pent-Test"
• Reply: Cedric Blancher: "Re: Wireless Pent-Test"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:41 EDT