Jibble News Archive

Back to 2010-04

O2 Wireless Box III - Still Insecure

After waiting several months for O2 to fix the wireless router vulnerability I reported last year, I was about to discuss how the vulnerability worked...

...but then I discovered (in less than one minute!) that their fix contains a new vulnerability which makes it possible to do CSRF attacks. That means an attacker could steal your WEP/WPA2 key, change your password, set up port forwarding, etc. Read more here.

10 Apr 2010 - 8:46:00 PDT
[Permanent link]

 

Search this site

 

Copyright Paul Mutton 2001-2013
http://www.jibble.org/
Feedback welcomed
email

~
Dreamhost
Web Hosting

~
Dreamhost
Web Hosting