Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: Cisco wireless vulnerability

Cisco wireless vulnerability 7 years 3 months ago #31618

  • r0nni3
  • r0nni3's Avatar
  • Offline
  • Distinguished Member
  • Posts: 107
  • Karma: 0
Hey all,

I was just browsing around a bit and i stumbled onto this little exploit in the lightweight access-points.

If you have a Wireless LAN Controller (WLC) the LW-AP's will broadcast unencrypted information about the WLC. This enables the hacker to set up a rogue AP's troughout the network. This is a security risk because then the hacker can sniff all the traffic going trough the network.

Cisco doesnt have a solution for this yet.
The only thing you could do for now is monitor your WLC and check the MAC address/amount of AP's registered to the WLC.

Also you can read the full article here:
www.pcworld.com/businesscenter/article/1..._open_back_door.html
Currently working as Cisco Engineer at Neon-Networking.

Certifications:
CCNA - Have it
CCNA Security - Have it
CCSP - Almost!!!!
CCIE Security - Not so far away dream
The administrator has disabled public write access.

Re: Cisco wireless vulnerability 7 years 3 months ago #31623

  • S0lo
  • S0lo's Avatar
  • Offline
  • Moderator
  • Posts: 1577
  • Thank you received: 7
  • Karma: 3
It's really interesting to know such news as this lightweight technology is relatively new. It seams that the WLCs IP is broadcasted during what is called a hunting process were APs try to gather as much WLCs IPs as possible inorder to join one of them. It's worth saying here that Cisco WLCs have some rouge AP protection features that can be configured through it's GUI interface. At least that's whats apparent from the CCNA Wireless official guide.

I'm getting one WLC2006 soon, so I might test this thing as well 8)
Studying CCNP...

Ammar Muqaddas
Forum Moderator
www.firewall.cx
The administrator has disabled public write access.
Time to create page: 0.074 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup