Frag Attacks: Vulnerability affects all WLAN devices

The German Federal Office for Information Security has published a vulnerability in all public WLAN routers. The vulnerability in question is called "Frag Attacks" ("fragmentation and aggregation attacks"). Smartphones, tablets and smart home devices are also affected.

However, the vulnerability can only be exploited locally and in the vicinity of an access point. Affected users should check for updates for each existing WLAN device on the manufacturer's websites. If no updates are available, the risk of exploiting some vulnerabilities can be reduced by using HTTPS. The gap should therefore be less tragic for private users. However, the BSI is particularly sensitizing business enterprises, since certain environments could easily be sniffed out from the Fragattacks vulnerability.

The whole security warning can be read at the BSI as PDF view

A corresponding help tool from the BSI to track down affected devices can be downloaded from here download

Source: BSI