Windows Wireless Security Flaw

Advisory by Simple Nomad (founder of Nomad Mobile Research Centre), presented at ShmooCon.

Nomad Mobile Research Centre
A D V I S O R Y
www.nmrc.org
Simple Nomad [thegnome@nmrc.org]
14Jan2006

—-

Microsoft Windows Silent Adhoc Network Advertisement

Platforms : Windows 2000/XP/2003
Application: Wireless Network Connection
(aka Microsoft Wireless Client)
Severity : High (albeit lame)

Synopsis

This advisory documents an anomaly involving Microsoft’s Wireless Network
Connection. If a laptop connects to an ad-hoc network it can later start
beaconing the ad-hoc network’s SSID as its own ad-hoc network without the
laptop owner’s knowledge. This can allow an attacker to attach to the laptop
as a prelude to further attack.

Full text of advisory here

One response to “Windows Wireless Security Flaw”

  1. dillyberto says:

    Thanks for the pointer!

Leave a Reply