Security researcher Mathy Vanhoef discovered several security flaws that affect most Wi-Fi devices. The collection of attacks, called FragAttacks, which stands for fragmentation and aggregation attacks, requires that this attacker is within range of the wireless network.
According to Vanhoef, three of the vulnerabilities discovered are “design flaws in the Wi-Fi standard” and therefore affect most Wi-Fi devices. During the research, additional vulnerabilities were discovered that were made possible by “widespread programming errors in Wi-Fi products”.
The vulnerabilities affect all security protocols of the Wi-Fi standard, including the latest WPA3 specification, but also WPA2 and WPE.
The researcher notes that the programming errors are the biggest problem because of their exploitability. The vulnerability was reported to the Wi-Fi Alliance and ICASI, and Wi-Fi device manufacturers had nine months to establish security …