cve/2017/CVE-2017-13088.md

CVE-2017-13088

Description

Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows reinstallation of the Integrity Group Temporal Key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame, allowing an attacker within radio range to replay frames from access points to clients.

POC

Reference

• http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-007.txt
• http://www.kb.cert.org/vuls/id/228519
• http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html
• http://www.ubuntu.com/usn/USN-3455-1
• https://cert.vde.com/en-us/advisories/vde-2017-005
• https://hackerone.com/reports/286740
• https://support.lenovo.com/us/en/product_security/LEN-17420
• https://www.krackattacks.com/

Github

• https://github.com/andir/nixos-issue-db-example
• https://github.com/chinatso/KRACK
• https://github.com/giterlizzi/secdb-feeds
• https://github.com/kristate/krackinfo
• https://github.com/merlinepedra/KRACK