IM
IronMonkey Threat Research

CVE-2017-13079 MEDIUM

Published: 2017-10-17 | Last Modified: 2026-06-17 | Status: Modified

Description

Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the four-way handshake, allowing an attacker within radio range to spoof frames from access points to clients.

Additional Descriptions (1)

Wi-Fi Protected Access (WPA y WPA2) que soporte IEEE 802.11w permite la reinstalaciĆ³n de la clave temporal IGTK (Integrity Group Temporal Key) durante la negociaciĆ³n en cuatro pasos, haciendo que un atacante en el rango de radio suplante frames desde los puntos de acceso hasta los clientes.

CVSS Metrics

Base Score: 2.9 (LOW)

AV:A/AC:M/Au:N/C:N/I:P/A:N

Access VectorADJACENT_NETWORK
Access ComplexityMEDIUM
AuthenticationNONE
Confidentiality ImpactNONE
Integrity ImpactPARTIAL
Availability ImpactNONE

Source: [email protected]

Type: Primary

Exploitability Score: 5.5

Impact Score: 2.9

Weaknesses

Source Type Description
[email protected] Secondary
en CWE-323
[email protected] Primary
en CWE-330

Affected Products

Vendor Product Version Update Type
canonical ubuntu_linux 14.04 <built-in method update of dict object at 0x72a9cd07b2c0> Operating System
canonical ubuntu_linux 16.04 <built-in method update of dict object at 0x72a9b0a4bc00> Operating System
canonical ubuntu_linux 17.04 <built-in method update of dict object at 0x72a9b0a4a880> Operating System
debian debian_linux 8.0 <built-in method update of dict object at 0x72a9b0a49600> Operating System
debian debian_linux 9.0 <built-in method update of dict object at 0x72a9cd07a840> Operating System
freebsd freebsd * <built-in method update of dict object at 0x72a9cd079380> Operating System
freebsd freebsd 10 <built-in method update of dict object at 0x72a9b0a488c0> Operating System
freebsd freebsd 10.4 <built-in method update of dict object at 0x72a9b0a48c00> Operating System
freebsd freebsd 11 <built-in method update of dict object at 0x72a9b0a4a9c0> Operating System
freebsd freebsd 11.1 <built-in method update of dict object at 0x72a9cd079f00> Operating System
opensuse leap 42.2 <built-in method update of dict object at 0x72a9cc7d01c0> Operating System
opensuse leap 42.3 <built-in method update of dict object at 0x72a9b0a4bf40> Operating System
redhat enterprise_linux_desktop 7 <built-in method update of dict object at 0x72a9b0a48d00> Operating System
redhat enterprise_linux_server 7 <built-in method update of dict object at 0x72a9b0a48c80> Operating System
w1.fi hostapd 0.2.4 <built-in method update of dict object at 0x72a9b0a49a80> Application
w1.fi hostapd 0.2.5 <built-in method update of dict object at 0x72a9b0a4ba40> Application
w1.fi hostapd 0.2.6 <built-in method update of dict object at 0x72a9b0a4be40> Application
w1.fi hostapd 0.2.8 <built-in method update of dict object at 0x72a9cdbfc540> Application
w1.fi hostapd 0.3.7 <built-in method update of dict object at 0x72a9b0a48380> Application
w1.fi hostapd 0.3.9 <built-in method update of dict object at 0x72a9b0a48ac0> Application
w1.fi hostapd 0.3.10 <built-in method update of dict object at 0x72a9cc7d2d00> Application
w1.fi hostapd 0.3.11 <built-in method update of dict object at 0x72a9e6d10e00> Application
w1.fi hostapd 0.4.7 <built-in method update of dict object at 0x72a9b0a49580> Application
w1.fi hostapd 0.4.8 <built-in method update of dict object at 0x72a9b0a48680> Application
w1.fi hostapd 0.4.9 <built-in method update of dict object at 0x72a9b0a4bf00> Application
w1.fi hostapd 0.4.10 <built-in method update of dict object at 0x72a9b0a49d80> Application
w1.fi hostapd 0.4.11 <built-in method update of dict object at 0x72a9b0a4bd80> Application
w1.fi hostapd 0.5.7 <built-in method update of dict object at 0x72a9cc7d2b00> Application
w1.fi hostapd 0.5.8 <built-in method update of dict object at 0x72a9b0a4b580> Application
w1.fi hostapd 0.5.9 <built-in method update of dict object at 0x72a9cc66bc80> Application
w1.fi hostapd 0.5.10 <built-in method update of dict object at 0x72a9cc66be80> Application
w1.fi hostapd 0.5.11 <built-in method update of dict object at 0x72a9cc66bac0> Application
w1.fi hostapd 0.6.8 <built-in method update of dict object at 0x72a9cc66b8c0> Application
w1.fi hostapd 0.6.9 <built-in method update of dict object at 0x72a9cc66bec0> Application
w1.fi hostapd 0.6.10 <built-in method update of dict object at 0x72a9cc66bf40> Application
w1.fi hostapd 0.7.3 <built-in method update of dict object at 0x72a9cc66bc00> Application
w1.fi hostapd 1.0 <built-in method update of dict object at 0x72a9af80bac0> Application
w1.fi hostapd 1.1 <built-in method update of dict object at 0x72a9af809640> Application
w1.fi hostapd 2.0 <built-in method update of dict object at 0x72a9af809040> Application
w1.fi hostapd 2.1 <built-in method update of dict object at 0x72a9af808440> Application
w1.fi hostapd 2.2 <built-in method update of dict object at 0x72a9af80b000> Application
w1.fi hostapd 2.3 <built-in method update of dict object at 0x72a9af80bc00> Application
w1.fi hostapd 2.4 <built-in method update of dict object at 0x72a9af80aa00> Application
w1.fi hostapd 2.5 <built-in method update of dict object at 0x72a9af80bbc0> Application
w1.fi hostapd 2.6 <built-in method update of dict object at 0x72a9af809c80> Application
w1.fi wpa_supplicant 0.2.4 <built-in method update of dict object at 0x72a9af80be80> Application
w1.fi wpa_supplicant 0.2.5 <built-in method update of dict object at 0x72a9af809a40> Application
w1.fi wpa_supplicant 0.2.6 <built-in method update of dict object at 0x72a9af80b040> Application
w1.fi wpa_supplicant 0.2.7 <built-in method update of dict object at 0x72a9af80afc0> Application
w1.fi wpa_supplicant 0.2.8 <built-in method update of dict object at 0x72a9af80a100> Application
w1.fi wpa_supplicant 0.3.7 <built-in method update of dict object at 0x72a9af809d40> Application
w1.fi wpa_supplicant 0.3.8 <built-in method update of dict object at 0x72a9af808bc0> Application
w1.fi wpa_supplicant 0.3.9 <built-in method update of dict object at 0x72a9af8099c0> Application
w1.fi wpa_supplicant 0.3.10 <built-in method update of dict object at 0x72a9af809700> Application
w1.fi wpa_supplicant 0.3.11 <built-in method update of dict object at 0x72a9af808c80> Application
w1.fi wpa_supplicant 0.4.7 <built-in method update of dict object at 0x72a9af808ac0> Application
w1.fi wpa_supplicant 0.4.8 <built-in method update of dict object at 0x72a9cc3b9140> Application
w1.fi wpa_supplicant 0.4.9 <built-in method update of dict object at 0x72a9cd0a6000> Application
w1.fi wpa_supplicant 0.4.10 <built-in method update of dict object at 0x72a9cd0a6240> Application
w1.fi wpa_supplicant 0.4.11 <built-in method update of dict object at 0x72a9cd0a4f40> Application
w1.fi wpa_supplicant 0.5.7 <built-in method update of dict object at 0x72a9cd0a6440> Application
w1.fi wpa_supplicant 0.5.8 <built-in method update of dict object at 0x72a9cd0a5a40> Application
w1.fi wpa_supplicant 0.5.9 <built-in method update of dict object at 0x72a9cd0a4d00> Application
w1.fi wpa_supplicant 0.5.10 <built-in method update of dict object at 0x72a9cd0a40c0> Application
w1.fi wpa_supplicant 0.5.11 <built-in method update of dict object at 0x72a9cd0a4dc0> Application
w1.fi wpa_supplicant 0.6.8 <built-in method update of dict object at 0x72a9cd0a4640> Application
w1.fi wpa_supplicant 0.6.9 <built-in method update of dict object at 0x72a9cd0a61c0> Application
w1.fi wpa_supplicant 0.6.10 <built-in method update of dict object at 0x72a9cd0a4180> Application
w1.fi wpa_supplicant 0.7.3 <built-in method update of dict object at 0x72a9cd0a5880> Application
w1.fi wpa_supplicant 1.0 <built-in method update of dict object at 0x72a9cd0a5c00> Application
w1.fi wpa_supplicant 1.1 <built-in method update of dict object at 0x72a9cd0a5680> Application
w1.fi wpa_supplicant 2.0 <built-in method update of dict object at 0x72a9cd0a4800> Application
w1.fi wpa_supplicant 2.1 <built-in method update of dict object at 0x72a9cd0a6940> Application
w1.fi wpa_supplicant 2.2 <built-in method update of dict object at 0x72a9cd0a5440> Application
w1.fi wpa_supplicant 2.3 <built-in method update of dict object at 0x72a9cd0a6b80> Application
w1.fi wpa_supplicant 2.4 <built-in method update of dict object at 0x72a9cd0a53c0> Application
w1.fi wpa_supplicant 2.5 <built-in method update of dict object at 0x72a9b0928280> Application
w1.fi wpa_supplicant 2.6 <built-in method update of dict object at 0x72a9b092a780> Application
suse linux_enterprise_desktop 12 <built-in method update of dict object at 0x72a9b092b080> Operating System
suse linux_enterprise_desktop 12 <built-in method update of dict object at 0x72a9b092afc0> Operating System
suse linux_enterprise_point_of_sale 11 <built-in method update of dict object at 0x72a9b092a840> Operating System
suse linux_enterprise_server 11 <built-in method update of dict object at 0x72a9b0928380> Operating System
suse linux_enterprise_server 11 <built-in method update of dict object at 0x72a9b0928200> Operating System
suse linux_enterprise_server 12 <built-in method update of dict object at 0x72a9b092aa40> Operating System
suse openstack_cloud 6 <built-in method update of dict object at 0x72a9b0928440> Operating System

Affected Configurations

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
Yes cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
Yes cpe:2.3:o:canonical:ubuntu_linux:17.04:*:*:*:*:*:*:*
Yes cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Yes cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:10:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:10.4:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:11:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:11.1:*:*:*:*:*:*:*
Yes cpe:2.3:o:opensuse:leap:42.2:*:*:*:*:*:*:*
Yes cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*
Yes cpe:2.3:o:redhat:enterprise_linux_desktop:7:*:*:*:*:*:*:*
Yes cpe:2.3:o:redhat:enterprise_linux_server:7:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:a:w1.fi:hostapd:0.2.4:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.2.5:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.2.6:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.2.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.3.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.3.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.3.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.3.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.6.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.6.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.6.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.7.3:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:1.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:1.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.2:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.3:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.4:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.5:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.6:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.4:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.5:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.6:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.6.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.6.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.6.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.7.3:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:1.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:1.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.2:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.3:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.4:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.5:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.6:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:suse:linux_enterprise_desktop:12:sp2:*:*:*:*:*:*
Yes cpe:2.3:o:suse:linux_enterprise_desktop:12:sp3:*:*:*:*:*:*
Yes cpe:2.3:o:suse:linux_enterprise_point_of_sale:11:sp3:*:*:*:*:*:*
Yes cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:ltss:*:*
Yes cpe:2.3:o:suse:linux_enterprise_server:11:sp4:*:*:*:*:*:*
Yes cpe:2.3:o:suse:linux_enterprise_server:12:*:*:*:ltss:*:*:*
Yes cpe:2.3:o:suse:openstack_cloud:6:*:*:*:*:*:*:*

References

Notification
Message here