Network
SourceSec Security Research » Blog Archive » Cracking WPA With CSRF Attacks
Over the past year, a lot of vulnerabilities have been found in various home routers, and it should be noted that almost all SOHO routers are vulnerable to CSRF attacks. By combining CSRF with authentication bypass vulnerabilities or default logins, an attacker can modify practically any router setting s/he desires. However, the crux of CSRF is that while it can be used to force the... moreOver the past year, a lot of vulnerabilities have been found in various home routers, and it should be noted that almost all SOHO routers are vulnerable to CSRF attacks. By combining CSRF with authentication bypass vulnerabilities or default logins, an attacker can modify practically any router setting s/he desires. However, the crux of CSRF is that while it can be used to force the browser to make requests, the attacker’s code can’t view the response from these requests thanks to the browser’s same-domain view page
All posts about this link
All posts about this link
RT: @alexandrosilva: Cracking WPA With CSRF Attacks - http://www.sourcesec.com/2009/05/11/cracking-wpa-with-csrf-attacks/
Cracking WPA With CSRF Attacks - http://www.sourcesec.com/2009/05/11/cracking-wpa-with-csrf-attacks/