This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SA-2023-047 - Framing Frames: Bypassing Wi-Fi Encryption by Manipulating Transmit Queues (Leaking fr

SamPirok
Community Manager Community Manager
Community Manager
‎05-01-2023 05:27 AM

Summary

The adversary can override a security context that the AP associates with a client by spoofing the MAC address of the client and then connecting to the AP. This causes the AP to encrypt traffic towards this client using session keys that the adversary possesses.

 

Products Potentially Affected

OS/Product Exposure
IQ Engine (HiveOS) Yes
Extreme Wireless (IdentiFi) Yes
WiNG Yes

 

Repair Recommendations

  • IQ Engine (HiveOS):
    • PMF and higher level TLS security are recommended.
  • Extreme Wireless (IdentiFi):
    • PMF and higher level TLS security are recommended.
  • WiNG:
    • PMF and higher level TLS security are recommended.
  • Wi-Fi systems should be used with WIPS, like ADSP. ADSP has MAC Spoof Activity Observed alarm which can identify the adversary.

 

Please see the full security advisory article here for more details and updates.

Popular Articles
GTM-P2G8KFN