Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2011-5053 | First vendor Publication | 2012-01-06 |
| Vendor | Cve | Last vendor Modification | 2024-11-21 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:N) | |||
|---|---|---|---|
| Cvss Base Score | 5.8 | Attack Range | Network |
| Cvss Impact Score | 4.9 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| The Wi-Fi Protected Setup (WPS) protocol, when the "external registrar" authentication method is used, does not properly inform clients about failed PIN authentication, which makes it easier for remote attackers to discover the PIN value, and consequently discover the Wi-Fi network password or reconfigure an access point, by reading EAP-NACK messages. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5053 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-287 | Improper Authentication |
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 1 |
ExploitDB Exploits
| id | Description |
|---|---|
| 2011-12-30 | Reaver WiFi Protected Setup Exploit |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 78282 | Multiple Router Wi-Fi Protected Setup (WPS) Protocol External Registrar Authe... |
Sources (Detail)
Alert History
| Date | Informations |
|---|---|
| 2024-11-28 23:03:10 |
|
| 2024-11-28 12:28:11 |
|
| 2021-05-04 12:18:04 |
|
| 2021-04-22 01:21:22 |
|
| 2020-05-23 00:32:25 |
|
| 2013-05-10 23:12:19 |
|
| 2013-01-15 13:21:11 |
|
