AirMagnet identifies new vulnerability and potential exploit associated with Cisco WLAN access points

August 25, 2009

1 Min Read

SUNNYVALE, Calif. -- AirMagnet Inc., the leader in security, performance and compliance solutions for wireless LANs, today announced that its AirMagnet Intrusion Research Team has uncovered a new wireless vulnerability and potential exploit associated with Cisco wireless LAN infrastructure.

The vulnerability involves Cisco’s Over-the-Air-Provisioning (OTAP) feature found in its wireless access points (APs). The potential exploit, dubbed SkyJack by AirMagnet, creates a situation whereby control of a Cisco AP can be obtained, whether intentionally or unintentionally, to gain access to a customer’s wireless LAN.

The Cisco OTAP feature allows a Cisco AP that is not connected to a Cisco controller to listen to traffic from other nearby Cisco APs and use that information to quickly locate a nearby WLAN controller to associate to. During this process, two elements of this vulnerability emerge. First, there is an unintentional exposure or leakage of information in all lightweight Cisco APs. Second, while the OTAP feature is enabled, there is the potential for APs to be incorrectly assigned to an outside Cisco controller (aka SkyJacked) either by accident or at the direction of a potential hacker.

AirMagnet Inc.

Subscribe and receive the latest news from the industry.
Join 62,000+ members. Yes it's completely free.

You May Also Like