Skip to main content

Cisco wireless vulnerability

More
14 years 7 months ago #31618 by r0nni3
Hey all,

I was just browsing around a bit and i stumbled onto this little exploit in the lightweight access-points.

If you have a Wireless LAN Controller (WLC) the LW-AP's will broadcast unencrypted information about the WLC. This enables the hacker to set up a rogue AP's troughout the network. This is a security risk because then the hacker can sniff all the traffic going trough the network.

Cisco doesnt have a solution for this yet.
The only thing you could do for now is monitor your WLC and check the MAC address/amount of AP's registered to the WLC.

Also you can read the full article here:
www.pcworld.com/businesscenter/article/1..._open_back_door.html

Currently working as Cisco Engineer at Neon-Networking.

Certifications:
CCNA - Have it
CCNA Security - Have it
CCSP - Almost!!!!
CCIE Security - Not so far away dream
More
14 years 7 months ago #31623 by S0lo
It's really interesting to know such news as this lightweight technology is relatively new. It seams that the WLCs IP is broadcasted during what is called a hunting process were APs try to gather as much WLCs IPs as possible inorder to join one of them. It's worth saying here that Cisco WLCs have some rouge AP protection features that can be configured through it's GUI interface. At least that's whats apparent from the CCNA Wireless official guide.

I'm getting one WLC2006 soon, so I might test this thing as well 8)

Studying CCNP...

Ammar Muqaddas
Forum Moderator
www.firewall.cx
Time to create page: 0.143 seconds