Infosecurity.US

Disturbing news of a quite serious vulnerability (and apparently newly discovered…) resident in the Over-The-Air-Provisioning subsystem. Stunning. More information, including a story snippet from DarkReading, appears after the jump. Read it and weep.

From DarkReading’s Tim Wilson: “Newly Discovered Vulnerability Could Threaten Cisco Wireless LANs“

“A flaw in the provisioning system used by Cisco wireless LANs could allow attackers to collect data about users’ wired networks or even gain access to WLAN-attached systems, researchers said today. Researchers at AirMagnet’s Intrusion Research Team say they have uncovered a security vulnerability in Cisco’s Over-The-Air-Provisioning (OTAP), a feature that helps users deploy wireless access points (APs). The potential exploit — which AirMagnet has dubbed SkyJack — makes it possible for others to gain control of a Cisco AP, intentionally or unintentionally. The Cisco OTAP feature allows a Cisco AP to “listen” to traffic from nearby Cisco APs and use that information to quickly locate a nearby WLAN controller on the network. However, this feature may cause unintentional exposure or leakage of network information in all lightweight Cisco APs, AirMagnet says…”

Cisco Security Advisory: Firewall Services Module Crafted ICMP Message Vulnerability (cisco.com)