dslreports logo
 
    All Forums Hot Topics Gallery
spc

spacer

Search Topic:
uniqs
2127
share rss forum feed

nony
Premium
join:2012-11-17
New York, NY

4 edits

2 recommendations

TWC Exposure Revisited

Did TWC ever fix the default WPA2 key problem? -

»Service Provider Customer Security Policies - A Case Study

Backgrounder:

The default WPA2 key used to be the concatenation of the SSID and BSSID. And as we all know, both of those values are broadcast in the clear. And since the default SSID used to be the model number, you could easily identify a TWC Arris device (wiggle) and derive the WPA2 key.

Specifically, if the default SSID is TG862G92, and the BSSID is XX-XX-XX-AB-CD-XX, for example, then-

ssid: TG862G92
bssid: XX-XX-XX-AB-CD-XX -->TG862G ABCD 92 -->TG862GABCD92
where XX - don't cares
AB - byte4
CD - byte5
WPA2 key:TG862GABCD92
---
Too soon?

-nony

nony
Premium
join:2012-11-17
New York, NY

2 recommendations

When the ARRIS gateways are provisioned to act as public wifi hotspots, this will open up another attack vector.

nony
Premium
join:2012-11-17
New York, NY

2 edits

2 recommendations

reply to nony
More details were reported here -
»www.avsforum.com/forum/45-local- ··· 22574133

Consider that TWC 3rd-level tech support was advising their customers that they couldn't change the default values, which is an egregious breech of responsibility and the public trust (unless its just another special access program gone wrong )

-nony

nony
Premium
join:2012-11-17
New York, NY

1 edit

1 recommendation

reply to nony
From Hope 9-

»www.youtube.com/watch?v=jGUyOYgY ··· yOYgYoQQ


More Hope 9 presentations have been recently posted here-
»www.youtube.com/user/Channel2600

-nony

nony
Premium
join:2012-11-17
New York, NY

2 edits

2 recommendations

reply to nony

Cisco too?

Multiple Cisco Wireless Gateways Vulnerable to Remote Attacks
»thehackernews.com/2014/07/multip ··· ing.html

Cisco Advisory-
»tools.cisco.com/security/center/ ··· 40716-cm

Possibly Related-
»www.synacktiv.com/ressources/TCP ··· gain.pdf

Why am I not surprised?

-nony