Description
Compaq Intel PRO/Wireless 2011B LAN USB Device Driver 1.5.16.0 through 1.5.18.0 stores the 128-bit WEP (Wired Equivalent Privacy) key in plaintext in a registry key with weak permissions, which allows local users to decrypt network traffic by reading the WEP key from the registry key.
Products
- Intel PRO Wireless 2011B LAN USB Device Driver 1.5.16.0
- Intel PRO Wireless 2011B LAN USB Device Driver 1.5.18.0
Questions to Ask Vendors
- Can you confirm whether your systems are affected by CVE-2002-0214, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2002-0214 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions
- Check out the advisory links provided below.
References