SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |    Help    |   

SecurityTracker
Archives


Welcome to SecurityTracker!
 
Click to Sign Up
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com
Sign Up!





Category:  Device (Router/Bridge/Hub)  >  Aironet Vendors:  Cisco
Cisco Aironet Access Point Discloses WEP Key Via SNMP Messages
SecurityTracker Alert ID:  1008357
CVE Reference:  GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Dec 2 2003
Impact:  Disclosure of authentication information, User access via network
Fix Available:  Yes   Exploit Included:  Yes   Vendor Confirmed:  Yes  
Version(s): Cisco Aironet 1100, 1200, and 1400 series running IOS 12.2(8)JA, 12.2(11)JA, and 12.2(11)JA1
Description:  A vulnerability was reported in the Cisco Aironet Access Points (AP). A remote user may be able to view the static Wired Equivalent Privacy (WEP) key.

It is reported that the AP running Cisco IOS may send static WEP keys in cleartext as part of an SNMP message if the 'snmp-server enable traps wlan-wep' command is enabled on the device. This command is reportedly disabled by default.

A remote user that is monitoring the network between the affected AP device and the SNMP network management station can obtain static WEP keys.

Dynamically configured WEP keys are reportedly not disclosed.

Cisco Aironet 1100, 1200, and 1400 series models are affected.

Cisco Aironet AP models running the VxWorks operating system are reportedly not affected.

Cisco credits Bill Van Devender with reporting this flaw.
Impact:  A remote user monitoring the network between the Aironet Access Point device and the device's network management station can obtain the device's static WEP keys.
Solution:  The vendor has issued a fixed version of IOS (12.2(13)JA1).

Cisco reports that the workaround is to disable the associated SNMP trap command by typing the following global command:

ap1200(config)#no snmp-server enable traps wlan-wep

Cisco recommends that you do not use static keys in the first place. See the Cisco advisory for Cisco's recommendations:

http://www.cisco.com/warp/public/707/cisco-sa-20031202-SNMP-tr ap.shtml
Vendor URL:  www.cisco.com/warp/public/707/cisco-sa-20031202-SNMP-trap.shtml (Links to External Site)
Cause:  Access control error

Message History:   None.

 Source Message Contents

 

[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us   |    Help

Copyright 2003, SecurityGlobal.net LLC