FragAttacks

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search
FragAttacks
CVE identifiersCVE-2020-24588,

CVE-2020-24587,
CVE-2020-24586,
CVE-2020-26145,
CVE-2020-26144,
CVE-2020-26140,
CVE-2020-26143,
CVE-2020-26139,
CVE-2020-26146,
CVE-2020-26147,
CVE-2020-26142,

CVE-2020-26141
DiscovererMathy Vanhoef

FragAttacks, or fragmentation and aggregation attacks, are a group of Wi-Fi vulnerabilities discovered by security research Mathy Vanhoef.[1] Since the vulnerabilities are design flaws in the Wi-Fi standard, any device released after 1997 could be vulnerable.[1] The attack can be executed without special privileges.[2] The attack was detailed on August 5, 2021 at Black Hat Briefings USA and at later at the USENIX 30th Security Symposium, where recordings are shared publicly.[3][4] The attack does not leave any trace in the network logs.[5] File:FragAttacks- Demonstration of Flaws in WPA2-3.webm

Patches

[edit | edit source]

Vanhoef worked with the Wi-Fi Alliance to help vendors issue patches.[3]

Microsoft started issuing patches for Windows 7 through Windows 10 on May 11, 2021.[6]

References

[edit | edit source]
  1. ^ a b Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
  2. ^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
  3. ^ a b Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
  4. ^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
  5. ^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
  6. ^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
[edit | edit source]


Stub icon

This computer security article is a stub. You can help Wikipedia by expanding it.

Retrieved from "http://70.231.62.181/index.php?title=FragAttacks&oldid=4794019"