- Posts: 107
- Thank you received: 0
Cisco wireless vulnerability
15 years 2 months ago #31618
by r0nni3
Currently working as Cisco Engineer at Neon-Networking.
Certifications:
CCNA - Have it
CCNA Security - Have it
CCSP - Almost!!!!
CCIE Security - Not so far away dream
Cisco wireless vulnerability was created by r0nni3
Hey all,
I was just browsing around a bit and i stumbled onto this little exploit in the lightweight access-points.
If you have a Wireless LAN Controller (WLC) the LW-AP's will broadcast unencrypted information about the WLC. This enables the hacker to set up a rogue AP's troughout the network. This is a security risk because then the hacker can sniff all the traffic going trough the network.
Cisco doesnt have a solution for this yet.
The only thing you could do for now is monitor your WLC and check the MAC address/amount of AP's registered to the WLC.
Also you can read the full article here:
www.pcworld.com/businesscenter/article/1..._open_back_door.html
I was just browsing around a bit and i stumbled onto this little exploit in the lightweight access-points.
If you have a Wireless LAN Controller (WLC) the LW-AP's will broadcast unencrypted information about the WLC. This enables the hacker to set up a rogue AP's troughout the network. This is a security risk because then the hacker can sniff all the traffic going trough the network.
Cisco doesnt have a solution for this yet.
The only thing you could do for now is monitor your WLC and check the MAC address/amount of AP's registered to the WLC.
Also you can read the full article here:
www.pcworld.com/businesscenter/article/1..._open_back_door.html
Currently working as Cisco Engineer at Neon-Networking.
Certifications:
CCNA - Have it
CCNA Security - Have it
CCSP - Almost!!!!
CCIE Security - Not so far away dream
15 years 2 months ago #31623
by S0lo
Studying CCNP...
Ammar Muqaddas
Forum Moderator
www.firewall.cx
Replied by S0lo on topic Re: Cisco wireless vulnerability
It's really interesting to know such news as this lightweight technology is relatively new. It seams that the WLCs IP is broadcasted during what is called a hunting process were APs try to gather as much WLCs IPs as possible inorder to join one of them. It's worth saying here that Cisco WLCs have some rouge AP protection features that can be configured through it's GUI interface. At least that's whats apparent from the CCNA Wireless official guide.
I'm getting one WLC2006 soon, so I might test this thing as well
I'm getting one WLC2006 soon, so I might test this thing as well
Studying CCNP...
Ammar Muqaddas
Forum Moderator
www.firewall.cx
Time to create page: 0.118 seconds