WPS Vulnerability

**American Zombie** · January 10th, 2012

If you have a router and use WPS you may want to go into your routers GUI to disable WPS for now until your router manufacturer (if on the list) provides a firmware update.

A design flaw that exists in the WPS specification for the PIN authentication significantly reduces the time required to brute force the entire PIN because it allows an attacker to know when the first half of the 8 digit PIN is correct.
The lack of a proper lock out policy after a certain number of failed attempts to guess the PIN on some wireless routers makes this brute force attack that much more feasible.

More info and router manufactures affected are at the source.

Source: US-Cert

January 10th, 2012	Top \| #1
American Zombie OSNN Veteran Addict Joined: June 2004 Location: Seattle Posts: 2,850 Reputation: 2689 Power: 148	WPS Vulnerability If you have a router and use WPS you may want to go into your routers GUI to disable WPS for now until your router manufacturer (if on the list) provides a firmware update. A design flaw that exists in the WPS specification for the PIN authentication significantly reduces the time required to brute force the entire PIN because it allows an attacker to know when the first half of the 8 digit PIN is correct. The lack of a proper lock out policy after a certain number of failed attempts to guess the PIN on some wireless routers makes this brute force attack that much more feasible. More info and router manufactures affected are at the source. Source: US-Cert

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Safari Vulnerability Detected	Mastershakes	Macintosh	8	February 22nd, 2006 3:25am
Vulnerability	Kr0m	Windows Desktop Systems	16	December 11th, 2002 11:33pm
Is there a fix for the xp logoff vulnerability?	Powerchordpunk	Windows Desktop Systems	14	March 26th, 2002 3:42am

Latest News Posts

Latest Forum Posts

Latest Member Blogs