Forgot your password?

Close
typodupeerror
Security Wireless Networking

Attack Tool Released For WPS Setup Flaw 164

Posted by samzenpus
from the choose-your-weapon dept.
Trailrunner7 writes "Just a day after security researcher Stefan Viehbock released details of a vulnerability in the WiFi Protected Setup (WPS) standard that enables attackers to recover the router PIN, a security firm has published an open-source tool capable of exploiting the vulnerability. The tool, known as Reaver, has the ability to find the WPS PIN on a given router and then recover the WPA passphrase for the router, as well. Tactical Network Solutions has released the tool as an open-source project on Google Code, but also is selling a more advanced commercial version."
This discussion has been archived. No new comments can be posted.

Attack Tool Released For WPS Setup Flaw More

Attack Tool Released For WPS Setup Flaw

Comments Filter:

  • Re:What purpose? (Score:5, Interesting)

    by 93 Escort Wagon (326346) on Friday December 30, @06:34AM (#38536818)

    Maybe it's handy for verifying you are vulnerable?

    Although I'd have to admit anyone actually using WPS probably isn't interested enough to even know such a tool exists...

    Well, since the claim is most routers are vulnerable by default, I can see value in using this as a test tool - both against your router's current configuration and after you've supposedly disabled WPS.

    And, speaking as an owner of an Apple router, I'd like to verify whether my belief that the Airport Extreme doesn't enable a PIN by default is correct.

  • Re:WTF is WPS? (Score:5, Interesting)

    by Penguinshit (591885) on Friday December 30, @06:40AM (#38536838) Homepage Journal
    That is the crux of the problem: The solution was (pathetically) poorly implemented.

Fun Facts, #14: In table tennis, whoever gets 21 points first wins. That's how it once was in baseball -- whoever got 21 runs first won.