N/A

The Temporal Key Integrity Protocol (TKIP) implementation in unspecified Cisco products and other vendors' products, as used in WPA and WPA2 on Wi-Fi networks, has insufficient countermeasures against certain crafted and replayed packets, which makes it easier for remote attackers to decrypt packets from an access point (AP) to a client and spoof packets from an AP to a client, and conduct ARP poisoning attacks or other attacks, as demonstrated by tkiptun-ng.

N/A

N/A

WPA加密标准TKIP密钥破解漏洞

WPA加密即Wi-Fi Protected Access，是无线网络广泛使用的加密标准。 很多对Wi-Fi网络使用WPA和WPA2加密的产品没有安全地实现临时密钥完整性协议(TKIP)，如果远程攻击者发送了特制的回放报文的话，就可能较容易的破解从AP发送给客户端的报文，然后执行ARP欺骗或其他攻击。 请注意这种攻击不是密钥恢复攻击，攻击者仅可以恢复用于认证报文的密钥而不是用于加密和混淆数据的密钥，且仅可以通过恢复的密钥伪造抓包到的报文，最多有7次尝试的窗口机会。每次攻击只能解密一个报文，所耗费的时间大约为

N/A

N/A