Actions
Bug #3034
closed
Security FLAW in pfSense Wireless Found
Start date:
06/09/2013
Due date:
% Done:
100%
Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.1
Affected Architecture:
Description
I have found a security flaw in pfSense wireless. If you enable WPA2 for security and use a password for the pre shared key that is too long the security appears to be enabled but anyone connecting to the wireless network can access the wireless network without entering a password. No warning is given in the web configurator admin panel and it appears to be enabled. But on the wireless side of things No authentication is displayed.
Work Around: Use shorter passwords.
Updated by Renato Botelho almost 13 years ago
What is the length of the password you got the issue?
Updated by Renato Botelho over 12 years ago
- Status changed from New to Feedback
- % Done changed from 0 to 100
Applied in changeset commit:df78d8cc1890f19702e3e78bb3c5a583ada52356.
Updated by Renato Botelho over 12 years ago
Applied in changeset commit:2ca432514e09e5388f1786f0f6c6d977d3254533.
Updated by Renato Botelho over 12 years ago
Applied in changeset commit:664f9f3b919f970fb77c66cc4c5c3445081d5f25.
Updated by Renato Botelho over 12 years ago
- Status changed from Feedback to Resolved
Actions