Kr00k vulnerability allows unauthorized decryption of WPA2-encrypted traffic
ESET, an internet security company, recently published a white paper (PDF) detailing a vulnerability in Wi-Fi encryption named "Kr00k." A team of ESET researchers found that certain internal errors can be induced in Broadcom and Cypress Wi-Fi chips by way of specifically timed and handcrafted traffic. These internal errors cause the Wi-Fi chips to encrypt user traffic with an all-zero encryption key, allowing this traffic to be decrypted.
This Kr00k vulnerability impacts devices with Broadcom and Cypress Wi-Fi chips, including both client devices and access points and routers. The ESET researchers discovered Kr00k back in 2019, registering the vulnerability as CVE-2019-15126 in the Common Vulnerabilities and Exposures system and National Vulnerability Database. ESET subsequently informed Broadcom and Cypress of the vulnerability. The two chip manufacturers developed and released updates intended to address this vulnerability.
ESET also worked with the Industry Consortium for Advancement of Security on the Internet (ICASI) to bring the vulnerability to the attention of all device manufacturers using Broadcom and Cypress Wi-Fi chips. The white paper states the following:
According to our information, patches for devices by major manufacturers have been released by now. To protect yourself, as a user, make sure you have applied the latest available updates on all your Wi-Fi capable devices, including phones, tablets, laptops, IoT devices with Wi-Fi, and Wi-Fi access points and routers.
The research team tested major devices has confirmed that the following devices are affected by Kr00k:
Vulnerable Client Devices
" Amazon Echo 2nd gen
" Amazon Kindle 8th gen
" Apple iPad mini 2
" Apple iPhone 6, 6S, 8, XR
" Apple MacBook Air Retina 13-inch 2018
" Google Nexus 5
" Google Nexus 6
" Google Nexus 6P
" Raspberry Pi 3
" Samsung Galaxy S4 GT-I9505
" Samsung Galaxy S8
" Xiaomi Redmi 3S
Vulnerable Access Points
" Asus RT-N12
" Huawei B612S-25d
" Huawei EchoLife HG8245H
" Huawei E5577Cs-321
The post Kr00k vulnerability allows unauthorized decryption of WPA2-encrypted traffic appeared first on The Tech Report.