Two generations of Cisco wireless LAN equipment contain a range of vulnerabilities, researchers have told the Black Hat security conference.
Enno Rey and Daniel Mende from German testing firm ERNW demonstrated how to hack into two separate generations of Cisco Wi-Fi kit. They said that the flaws were fairly easy to find and exploit.
In a presentation called ‘Hacking Cisco Enterprise WLANs’ on Wednesday, the researchers demonstrated an attack aimed at Cisco’s first generation equipment Cisco Structured Wireless Aware Network (Swan).
The researchers said it was possible to launch denial of service attacks and to sniff encrypted traffic on Swan by exploiting weaknesses in Cisco’s Wireless LAN Context Control Protocol (WLCCP). The protocol defines how information is sent between wireless access points.