KRACK WPA2 Vulnerability Exposed

RMerlin · Oct 19, 2017

ILMostro said:
On Linux, `wpa_supplicant` is used to perform that handshake; it's been patched already on RHEL and CentOS at least. The drivers should not be vulnerable, as far as I understand it.

That first CVE I listed only affects Windows. No idea about the second one, but Intel does list it as having been fixed in their driver release.

john9527 · Oct 19, 2017

ILMostro said:
On Linux, `wpa_supplicant` is used to perform that handshake; it's been patched already on RHEL and CentOS at least. The drivers should not be vulnerable, as far as I understand it.

Also on Ubuntu/Mint....I was offered the wpa update yesterday.

RogerSC · Oct 19, 2017

thiggins said:
[sfx2000]
It's a client side vuln - linux and android are high at risk, OpenBSD released a patch for their wpa supplicant, and I expect other OS's to release as well.

AP's are not impacted - however, repeats (as they are clients) are vulnerable.

Yes, I heard that Microsoft has already released a patch for this...in their last cumulative.

On the other hand, routers and a IoT devices all commonly use embedded Linux kernels, so there's that.

Just the other day I had our solar panel installer turn off the wifi between the solar panel monitor and our router, and it's now using powerline networking. Still have a lot of unpatched clients, though *sigh*. Have to wait for Apple and Google to get on it.

wouterv · Oct 22, 2017

KRACK WPA2 Wi-Fi flaw:
https://www.kb.cert.org/vuls/id/228519

Asus statement can be found here:
https://www.asus.com/Static_WebPage/ASUS-Product-Security-Advisory/
A fix seems in progress.
The last update I see now is of 10/18/2017.

pege63 · Oct 23, 2017

ONE of the first Routers to get the WPA KRACK fix is the Dovado Routers

New Firmware containing fixes for WPA KRACK.
VERSION: 9.0.7

rbird2 · Oct 23, 2017

pege63 said:
ONE of the first Routers to get the WPA KRACK fix is the Dovado Routers

New Firmware containing fixes for WPA KRACK.
VERSION: 9.0.7

Never heard of a Dovado router.

Went to the Dovado website (http://www.dovado.com/en/where-to-buy) and it appears they do not do business in North America...

rtcomputersinc · Oct 23, 2017

My mention of this krack a week ago was deleted.

RMerlin · Oct 23, 2017

rtcomputersinc said:
My mention of this krack a week ago was deleted.

There were a lot of separate threads at one point, they were mostly merged into this one: https://www.snbforums.com/threads/wpa2-vulnerability-exposed.41678/

It's possible that your post was among those Tim accidentally lost while cleaning up duplicate threads (see his post in that thread).

pege63 · Oct 23, 2017

RETAIL
Please see the list of countries where purchase through retail is possible below;

ALL COUNTRIES

MOVINGWIFI (BASED IN UK)

sm00thpapa · Oct 23, 2017

eero has been patched since 17 Oct. A company that is on top of their products.

Morac · Oct 23, 2017

Seems like a lot of companies are confused about the flaw. Chamberlain claimed their products weren’t affected because all their traffic is encrypted. It’s my understanding is that doesn’t completely mitigate the flaw, it just means traffic can’t easily be sniffed.

joegreat · Oct 24, 2017

Morac said:
Seems like a lot of companies are confused about the flaw. Chamberlain claimed their products weren’t affected because all their traffic is encrypted.

If all traffic is encrypted on top of the WPA2 WLAN communication (like having only https communication) you are fine.

Update: SSL can also be attacked... ...but this is a different attack!
Still you are not effected by the KRACK attack as the hacker might be able to hack WPA2, but not SSL to read your data... ...hopefully!

sfx2000 · Oct 24, 2017

joegreat said:
If all traffic is encrypted on top of the WPA2 WLAN communication (like having only https communication) you are fine.

Erm... not really - HTTPs can be attacked as well - sslstrip is but one example...

RMerlin · Oct 24, 2017

sfx2000 said:
Erm... not really - HTTPs can be attacked as well - sslstrip is but one example...

...and that's until the next Heartbleed occurs...

sfx2000 · Oct 25, 2017

RMerlin said:
...and that's until the next Heartbleed occurs...

yep

Morac · Oct 30, 2017

joegreat said:
If all traffic is encrypted on top of the WPA2 WLAN communication (like having only https communication) you are fine.

Update: SSL can also be attacked... ...but this is a different attack!
Still you are not effected by the KRACK attack as the hacker might be able to hack WPA2, but not SSL to read your data... ...hopefully!

Technically even if all client/server traffic is encrypted can't network traffic like broadcast messages, UPNP, etc still be intercepted?

Thread starter	Title	Forum	Replies	Date
	This one is kind of interesting - Client and AP issues with WPA2/3	General Network Security	2	Feb 15, 2024
D	News TikTag unfixable Arm vulnerability	General Network Security	11	Jul 16, 2024
D	News 'Critical' vulnerability in OpenSSH uncovered, affects almost all Linux systems	General Network Security	1	Jul 1, 2024
D	News Windows Wi-Fi Driver Remote Code Execution Vulnerability CVE-2024-30078	General Network Security	2	Jun 15, 2024
D	News New 28 year old Php/gnu c buffer overflow vulnerability.	General Network Security	4	Apr 22, 2024
	CVE-2024-31497: PuTTY vulnerability vuln-p521-bias	General Network Security	3	Apr 16, 2024

KRACK WPA2 Vulnerability Exposed

Asuswrt-Merlin dev

Part of the Furniture

Part of the Furniture

Very Senior Member

Very Senior Member

Regular Contributor

Senior Member

Asuswrt-Merlin dev

Very Senior Member

Very Senior Member

Senior Member

Very Senior Member

Part of the Furniture

Asuswrt-Merlin dev

Part of the Furniture

Senior Member

Similar threads

Similar threads

Support SNBForums w/ Amazon

Sign Up For SNBForums Daily Digest