Computer Security
[EN] securityvulns.ru no-pyccku


Ekahau Real-Time Location Tracking System weak encryption
Published:22.12.2014
Source:
SecurityVulns ID:14165
Type:remote
Threat Level:
5/10
Description:It's possible to read and generate messages.
Affected:EKAHAU : B4 staff badge tag 5.7
CVE:CVE-2014-2716 (Ekahau B4 staff badge tag 5.7 with firmware 1.4.52, Real-Time Location System (RTLS) Controller 6.0.5-FINAL, and Activator 3 reuses the RC4 cipher stream, which makes it easier for remote attackers to obtain plaintext messages via an XOR operation on two ciphertexts.)
Original documentdocumentmodzero security, Vulnerabilities in Ekahau Real-Time Location Tracking System [MZ-14-01] (22.12.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod