CommScope RUCKUS Community Forums

marko_teklic · ‎10-15-2017

when can we expect to see update for this https://arstechnica.com/information-technology/2017/10/severe-flaw-in-wpa2-protocol-leaves-wi-fi-tra...

robert_lowe_722 · ‎10-16-2017

Aruba reports that they were informed by the author of the research paper in July & by CERT in August. Imagine same for all vendors. Plus many (if not all) have been participating in industry level discussions

simon_b_hrer_73 · ‎10-16-2017

Pretty annoying issue and surely not the best time to get it public, but I don't get why this issue is still persistent since it was reported to the vendors in August/Septembre. Actually there's one customer after another calling and asking what they can do and when they can expect a solution. Not cool, to have no answer ready...

robert_lowe_722 · ‎10-16-2017

Dont forget though that the infrastructure is only part of this issue. Even after controllers & AP's have had a 'fix' applied there are still vulnerabilities from the client side, which is actually the source of the issue, can only be addressed by the client manufacturers. As i understand it, It affects infrastructure vendors because sometimes their AP's act as a client like when using mesh for example.

Here's a link to their FAQ on the issue: http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-007_FAQ_Rev-1.pdf

tech_support_4y · ‎10-16-2017

And here's Meraki's which is excellent IMO:
https://documentation.meraki.com/zGeneral_Administration/Support/802.11r_Vulnerability_(CVE%3A_2017-...

Deathly silence from Ruckus...

jesse_johnston_ · ‎10-16-2017

From my chat session they plan to take their time... They have a response slated for the second half of today.

CommScope RUCKUS Community Forums

Severe flaw in WPA2 - cracked

Photos