{"id":604,"date":"2012-10-10T18:32:19","date_gmt":"2012-10-11T00:32:19","guid":{"rendered":"http:\/\/www.jedge.com\/wordpress\/?p=604"},"modified":"2013-01-08T09:46:03","modified_gmt":"2013-01-08T15:46:03","slug":"mobile-devices-and-airbase-ng-attacks","status":"publish","type":"post","link":"https:\/\/www.jedge.com\/wordpress\/2012\/10\/mobile-devices-and-airbase-ng-attacks\/","title":{"rendered":"Mobile Devices and Airbase-ng Attacks"},"content":{"rendered":"

I don’t feel that this issue gets enough coverage so I am adding my voice to the mix in the hopes that someday the makers of our popular mobile operating systems will FIX THE ISSUE! \u00a0What I’m going to discuss is a wireless association vulnerability that was first discovered by Max Moser (site\u00a0here<\/a>\u00a0and his full disclosure<\/a>) way back in 2004 for Windows XP. \u00a0Using airbase-ng (part of the Aircrack-ng<\/a> suite of tools) this same attack works against the latest versions of iOS5 and iOS6 (iPhone and iPad), Blackberry OS, and Android. \u00a0Apple’s iOS, from AT&T Wireless, even comes with a helpful default profile so you can attack a device right out of the box (see Tweet by HD Moore<\/a>). \u00a0The only mobile OS that does not have this issue is Windows 8 on the new Nokia phones. \u00a0I don’t know a soul that has one of these phones so I hung out in an AT&T Wireless store to conduct my testing. \u00a0Those Microsoft devices will not associate with any Airbase-ng APs that mimic APs from the device’s probe packets. \u00a0Some individuals have tried to tell the world about this issue. \u00a0A great Youtube video<\/a> was created by\u00a0Jeffery Wilkins demonstrating this issue. \u00a0Vincent Costagliola at patctech.com<\/a>\u00a0wrote this article<\/a> mentioning the same issue.<\/p>\n

My testing has shown that an iPhone will connect to airbase-ng even if it is already connected to a WPA encrypted access point. \u00a0Just as described by Max Moser in 2004.<\/p>\n