Menu

Database

802.11 SSID Can be Spoofed

WVE ID: WVE-2005-0008

Type: Vulnerability

Status: Candidate

Classification:
Other
Design Flaw

Description:
The SSID used to identify an 802.11 network can be trivially faked by an attacker. Since the SSID is displayed to the user by most 802.11 clients and used to choose which network to connect to, a spoofed SSID can be used to trick a client into connecting to the wrong AP.

Discussion:
If a client can be tricked into connecting to a malicious AP then it may become vulnerable in a number of ways: (a) it may accept an unencrypted connection, (b) the malicious AP might be used as part of a man-in-the-middle attack, (c) the user might be tricked by phishing attacks behind the AP (e.g. a fake hotspot signup page).

Credits

References
WVE: WVE-2005-0019

Released: 2005-10-18

Submitter
Chris Waters (cwaters@networkchemistry.com) : Network Chemistry

Submitted: Tue Oct 18 11:42:22 -0700 2005

Candidate Date: Mon Oct 24 09:59:27 -0700 2005


Recent Entries

TKIP Replay and Plaintext Discovery
WVE-2008-0013 11/18/2008
Active Https Cookie Hijacking
WVE-2008-0012 9/18/2008
Auto Immune Attack
WVE-2008-0011 9/17/2008
Marvell Null SSID Association Request
WVE-2008-0010 9/15/2008
Marvell EAPOL-Key Length Overflow
WVE-2008-0009 9/15/2008
Atheros IE Tag Overflow
WVE-2008-0008 9/15/2008
Weaknesses in the A5/1 Cipher
WVE-2008-0007 4/9/2008
Block ACK DoS
WVE-2008-0006 4/9/2008
GF Mode WIDS Rogue AP Evasion
WVE-2008-0005 4/9/2008
HT Intolerant Degradation of Service
WVE-2008-0004 4/9/2008
More Entries...

News

SANS Institute Sponsors WVE
4/19/2008
Wireless Attackers and Honeypot Technology
4/15/2008
High Speed Risks in 802.11n Slides Posted
4/11/2008
Vulnerabilities in 802.11n
4/9/2008
WVE Editors Speaking at SHARKFEST.08
1/3/2008
More News...