Title: Telindus ADSL Router Encryption Scheme Weakness
Severity: HIGH
Description:
The 1120 series routers are a broadband connectivity solution distributed by Telindus.
A weakness has been discovered in the algorithm used by Telindus 1120 series routers to encrypt sensitive network packets. This weakness is due to the use of multiple static properties between an encrypted and unencrypted packet, as well as an algorithm that generates predictable and repetitive cipher-text.
An attacker could exploit this weakness by first capturing and comparing an encrypted and unencrypted network packet. By identifying various static values residing in both packets, it would become trivial for an attacker to deduce the algorithm deployed by the router.
Successful exploitation of this weakness may allow an attacker to obtain the routers adminstrator password. Access to this information would allow for further attacks to be launched against the router or possibly an entire network.
This issue affects Telindus ADSL Routers running the 6.0.x release of firmware.
It should be noted that this issue is partially derived from the vulnerability described in BID 4946.
Affected Products:
- Telindus 1120 ADSL Router 6.0.0.21B Firmware
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
