CVE-2005-3253
First published: Fri Dec 16 2005(Updated: )
Wireless Access Points (AP) for (1) Avaya AP-3 through AP-6 2.5 to 2.5.4, and AP-7/AP-8 2.5 and other versions before 3.1, and (2) Proxim AP-600 and AP-2000 before 2.5.5, and Proxim AP-700 and AP-4000 after 2.4.11 and before 3.1, use a static WEP key of "12345", which allows remote attackers to bypass authentication.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Avaya Wireless AP-6 | =2.5 | |
| Avaya Wireless AP-6 | =2.5.4 | |
| Avaya Wireless AP-7 | =2.5 | |
| Avaya Wireless AP-5 | =2.5.4 | |
| Avaya Wireless AP-4 | =2.5.4 | |
| Avaya Wireless AP-4 | =2.5 | |
| Avaya Wireless AP-5 | =2.5 | |
| Avaya Wireless AP-8 | =2.5 | |
| Avaya Wireless AP-3 | =2.5 | |
| Avaya Wireless AP-3 | =2.5.4 | |
| Proxim Ap-4000 | =2.4.12 | |
| Proxim AP-700 | =2.4.12 | |
| Proxim AP-700 | =3.0 | |
| Proxim Ap-2000 | =2.5.4 | |
| Proxim Ap-4000 | =3.0 | |
| Proxim AP-600 | =2.5.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2005-3253?
CVE-2005-3253 is considered to have a high severity due to the use of a static WEP key that can be easily exploited by attackers.
How do I fix CVE-2005-3253?
To fix CVE-2005-3253, update the firmware on the affected Avaya and Proxim wireless access points to versions that do not utilize static WEP keys.
What devices are affected by CVE-2005-3253?
CVE-2005-3253 affects Avaya AP-3 through AP-6 versions 2.5 to 2.5.4, AP-7/AP-8 versions before 3.1, and Proxim AP-600, AP-2000 versions before 2.5.5, and AP-700/AP-4000 versions before 3.1.
What type of attack does CVE-2005-3253 allow?
CVE-2005-3253 allows remote attackers to bypass wireless security by exploiting the static WEP key.
Is there a workaround for CVE-2005-3253?
A workaround for CVE-2005-3253 is to disable WEP and use stronger encryption methods, such as WPA2, if possible.
- agent/references
- agent/type
- agent/softwarecombine
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/avaya
- canonical/avaya wireless ap-6
- version/avaya wireless ap-6/2.5
- version/avaya wireless ap-6/2.5.4
- canonical/avaya wireless ap-7
- version/avaya wireless ap-7/2.5
- canonical/avaya wireless ap-5
- version/avaya wireless ap-5/2.5.4
- canonical/avaya wireless ap-4
- version/avaya wireless ap-4/2.5.4
- version/avaya wireless ap-4/2.5
- version/avaya wireless ap-5/2.5
- canonical/avaya wireless ap-8
- version/avaya wireless ap-8/2.5
- canonical/avaya wireless ap-3
- version/avaya wireless ap-3/2.5
- version/avaya wireless ap-3/2.5.4
- vendor/proxim
- canonical/proxim ap-4000
- version/proxim ap-4000/2.4.12
- canonical/proxim ap-700
- version/proxim ap-700/2.4.12
- version/proxim ap-700/3.0
- canonical/proxim ap-2000
- version/proxim ap-2000/2.5.4
- version/proxim ap-4000/3.0
- canonical/proxim ap-600
- version/proxim ap-600/2.5.4