Re: Accesspoints disclose wep keys, password and mac filter (fwd)

From: Hakan Carlsson (hockeyat_private)
Date: Tue Nov 05 2002 - 01:44:22 PST

Next message: Matthew Collins: "Re: A technique to mitigate cookie-stealing XSS attacks"

Previous message: Andy Polyakov: "Re: When scrubbing secrets in memory doesn't work"
In reply to: Tom Knienieder: "Accesspoints disclose wep keys, password and mac filter (fwd)"
Next in thread: Alex Harasic: "Re: Accesspoints disclose wep keys, password and mac filter (fwd)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, 3 Nov 2002, Tom Knienieder wrote:

Tom Knienieder>         Possibly vulnerable, not tested, OEM Version from GlobalSunTech:
Tom Knienieder>                 D-Link DWL-900AP+ B1 version 2.1 and 2.2

DWL-900AP+ ver 2.2 is vunerable. After changing the test prog (attached)
it returned:

	Type            : GL2422AP-00-0M0 T1.0 -042.2
	Announced Name  : DWL-900AP+
	Admin Username  : admin
	Admin Password  : secret
	SSID            : mySSID
	Wep KEY         : 01 02 03 04 05 06 07 08 09 0a 0b 0c 0d


Don't seem to work on Dlink DI-713P (wlan side)

/håkan

TEXT/PLAIN attachment: wcrack2.c

Next message: Matthew Collins: "Re: A technique to mitigate cookie-stealing XSS attacks"
Previous message: Andy Polyakov: "Re: When scrubbing secrets in memory doesn't work"
In reply to: Tom Knienieder: "Accesspoints disclose wep keys, password and mac filter (fwd)"
Next in thread: Alex Harasic: "Re: Accesspoints disclose wep keys, password and mac filter (fwd)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Nov 07 2002 - 22:22:22 PST