Phase:The Lucent Closed Network protocol can allow remote attackers to join Closed Network networks which they do not have access to. The 'Network Name' or SSID, which is used as a shared secret to join the network, is transmitted in the clear.
ReferencesBUGTRAQ:Monday, April 02, 2001 Design Flaw in Lucent/Orinoco 802.11 proprietary access control- closed network | URL:http://archives.neohapsis.com/archives/bugtraq/2001-04/0015.html
Votes:Proposed (Friday, July 27, 2001)
Comments: MODIFY(1) Frech | NOOP(3) Wall, Foat, Cole | REJECT(1) Ziese | REVIEWING(1) Bishop
F7: Frech> XF:orinoco-ap-plaintext-ssid(7005)