cancel
Showing results for 
Search instead for 
Did you mean: 

KRACK attack on WPA2

KRACK attack on WPA2

Johannes_Dennin
New Contributor
Hello everyone,
I have some questions due to the expected disclosure today on the attack possible on WPA2 SSIDs.
US-CERT has become aware of several key management vulnerabilities in the 4-way handshake of the Wi-Fi Protected Access II (WPA2) security protocol. The impact of exploiting these vulnerabilities includes decryption, packet replay, TCP connection hijacking, HTTP content injection, and others. Note that as protocol-level issues, most or all correct implementations of the standard will be affected. The CERT/CC and the reporting researcher KU Leuven, will be publicly disclosing these vulnerabilities on 16 October 2017.


Link: https://arstechnica.com/information-technology/2017/10/severe-flaw-in-wpa2-protocol-leaves-wi-fi-tra...

- Is Extreme aware of this?
- Are Fixes ready to be released?
- Is a software fix sufficient or does hardware need to be replaced?

Thanks and best regards,

Johannes
84 REPLIES 84

JP4
New Contributor II
Has anyone loaded the IdentiFi v10.31.07.0002 patch yet ? I am going to load it before the start of business on monday and was wondering if anyone had any feedback, no issues after the upgrade ?

JP4
New Contributor II
Thanks. Upgraded here before the day began on monday as well.

James_A
Valued Contributor
I upgraded on Sunday night, no complaints this morning.

Bin
Extreme Employee
Hello, JP

v10.31.07.0002 has be released.

Hotfix Development (in process)

  • 10.31.07.0002 (AP3700, AP3800, AP3900) Maintenance Release October 20, 2017
https://extremeportal.force.com/ExtrArticleDetail?n=000018005

Best regards,
Bin

Kyle_Stanford
New Contributor
Is there a better timeline on the release of the patches? We are looking to patch our customers this weekend during a scheduled outage if possible.
GTM-P2G8KFN