Security News > 2020 > August > Qualcomm, MediaTek Wi-Fi Chips Vulnerable to Kr00k-Like Attacks

Qualcomm, MediaTek Wi-Fi Chips Vulnerable to Kr00k-Like Attacks
2020-08-07 12:33

The Kr00k vulnerability disclosed earlier this has only been found to impact devices using Wi-Fi chips from Broadcom and Cypress, but researchers revealed this week that similar flaws have been discovered in chips made by Qualcomm and MediaTek.

While Wi-Fi chips from Qualcomm, Ralink, Realtek and MediaTek are not vulnerable to Kr00k attacks, ESET researchers discovered that they are affected by similar flaws.

"The devices we tested and found to have been vulnerable are the D-Link DCH-G020 Smart Home Hub and the Turris Omnia wireless router. Of course, any other unpatched devices using the vulnerable Qualcomm chipsets will also be vulnerable," ESET said.

Qualcomm released a patch for its proprietary driver in July, but some devices use open source Linux drivers and it's not clear if those will be patched as well.

Since several proof-of-concept exploits have already been released for the Kr00k attack, ESET has now decided to release a script that tells users if a device is vulnerable to Kr00k or the newer attack variants.


News URL

http://feedproxy.google.com/~r/Securityweek/~3/X_CvTtxFCFU/qualcomm-mediatek-wi-fi-chips-vulnerable-kr00k-attacks

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Qualcomm 2304 99 457 897 439 1892
Mediatek 61 0 41 27 22 90