vulnerability

FreeBSD: VID-D670A953-B2A1-11E7-A633-009C02A2AB30 (CVE-2017-13087): WPA packet number reuse with replayed messages and key reinstallation

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
3	(AV:A/AC:M/Au:N/C:N/I:P/A:N)	Oct 16, 2017	Oct 17, 2017	May 7, 2019

Severity

CVSS

(AV:A/AC:M/Au:N/C:N/I:P/A:N)

Published

Oct 16, 2017

Added

Oct 17, 2017

Modified

May 7, 2019

Description

Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows reinstallation of the Group Temporal Key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame, allowing an attacker within radio range to replay frames from access points to clients.

Solution(s)

freebsd-upgrade-package-hostapdfreebsd-upgrade-package-wpa_supplicant

References

DEBIAN-DSA-3999
UBUNTU-USN-3455-1
NVD-CVE-2017-13087

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today