Actions
Bug #3034
closed
Security FLAW in pfSense Wireless Found
Start date:
06/09/2013
Due date:
% Done:
100%
Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.1
Affected Architecture:
Description
I have found a security flaw in pfSense wireless. If you enable WPA2 for security and use a password for the pre shared key that is too long the security appears to be enabled but anyone connecting to the wireless network can access the wireless network without entering a password. No warning is given in the web configurator admin panel and it appears to be enabled. But on the wireless side of things No authentication is displayed.
Work Around: Use shorter passwords.
Updated by Renato Botelho over 11 years ago
What is the length of the password you got the issue?
Updated by Renato Botelho over 11 years ago
- Status changed from New to Feedback
- % Done changed from 0 to 100
Applied in changeset df78d8cc1890f19702e3e78bb3c5a583ada52356.
Updated by Renato Botelho over 11 years ago
Applied in changeset 2ca432514e09e5388f1786f0f6c6d977d3254533.
Updated by Renato Botelho over 11 years ago
Applied in changeset 664f9f3b919f970fb77c66cc4c5c3445081d5f25.
Updated by Renato Botelho over 11 years ago
- Status changed from Feedback to Resolved
Actions