Title: Logitech Wireless Peripheral Device Man in the Middle Vulnerability
Severity: CRITICAL
Description:
Logitech is a PC-based hardware manufacturer, distributing such items as joysticks, mice, keyboards, and webcams. These particular problems affect Logitech wireless devices, specifically keyboards and mice.
Problems have been discovered in the handling wireless peripherals and the way these devices authenticate and access the system console. Due to flaws in design, remote users may gain unauthorized access to system consoles using these devices.
Under normal circumstances, a session between the signal receiver and keyboard/mouse is negotiated by pressing the connect button on the receiver, and then on the keyboard/mouse. The devices establish a frequency to communicate on, and normal operation begins. The wireless receiver continues to listen for 30 minutes after the session is negotiated.
The first problem occurs in session negotiation. The session can be negotiated by any device, and does not require any authentication of any sort. Since the device listens for 30 minutes after session negotiation, it is possible for a remote user with equipment capable of jumping onto the device radio frequencies to hijack the session.
The second problem with the Logitech wireless peripherals is the fact that all communications between the devices and the receiving station are sent via radio frequency, and in plain text. This makes it possible for remote users to monitor the session, and view any keystrokes performed.
Affected Products:
- Logitech Cordless Freedom
- Logitech Cordless Freedom Navigator
- Logitech Cordless Freedom Pro
- Logitech Cordless iTouch Keyboard
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
