New Reviews

Intel Core i5 11400F processor review
Corsair Vengeance RGB Pro SL 3600 MHz 32GB review
ASRock Z590 Extreme review
Gigabyte Radeon RX 6700 XT Gaming OC review
Corsair K70 RGB TKL keyboard review
Corsair RM650x (2021) power supply review
be quiet! Silent Loop 2 280mm review
Corsair K55 RGB PRO XT keyboard review
Guru3D Rig of the Month - March 2021
Intel Core i9-11900K processor review

New Downloads

CPU-Z download v1.96
GeForce 466.11 WHQL driver download
Guru3D RTSS Rivatuner Statistics Server Download 7.3.2 Beta 2
MSI Afterburner 4.6.4 Beta 2 Download
HWiNFO Download v7.02
Intel HD graphics Driver Download Version: DCH 27.20.100.9316
Corsair Utility Engine Download (iCUE) Download v4.9.350
Quake II RTX Download 1.5.0
GeForce 465.89 WHQL driver download
AIDA64 Download Version 6.33

New Forum Topics

GeForce 466.11 WHQL driver download & discussion Win10Pro Sandboxing?..... Study reveals Cryptocurrency mining energy consumption in China alone will be higher than Italy in three years ASUS ROG Announces Strix Scope RX Keyboard NVIDIA to replace RTX 3060 GPU with GA106-302 chip to suppress ETH mining Review: Intel Core i5 11400F processor Codemasters F1 2021 gets co-op and Raytracing Display Smart Access Memory Status Info On Home Page of Adreneline? Download: Samsung SSD Magician 6.1.0 NVidia Anti-Aliasing Guide (updated)

Wi-Fi Protected Setup PIN Brute Force Vulnerability

by Hilbert Hagedoorn on: 12/30/2011 01:38 PM | source: | 0 comment(s)

A researcher has discovered a security hole in WPS technology that affects millions of Wi-Fi routers around the world.
A few weeks ago I decided to take a look at the Wi-Fi Protected Setup (WPS) technology. I noticed a few really bad design decisions which enable an efficient brute force attack, thus effectively breaking the security of pretty much all WPS-enabled Wi-Fi routers. As all of the more recent router models come with WPS enabled by default, this affects millions of devices worldwide.

I reported this vulnerability to CERT/CC and provided them with a list of (confirmed) affected vendors. CERT/CC has assigned VU#723755 (will be released today) to this issue. To my knowledge none of the vendors have reacted and released firmware with mitigations in place.

Guru3D.com © 2021