Broadcom Wi-Fi Chipset in Recent Devices Vulnerable to Attack

There is a proof-of-concept example code that shows a vulnerability in the firmware of two wireless chips produced by Broadcom, the BCM4325 and the BCM4329.

Some of the recent devices that have these Broadcom wireless chips are:

    • iPhone 4,
    • iPad
    • iPad 2
    • HTC Droid
    • Incredible 2
    • Motorola Droid X2
    • Some Edge model cars manufactured by Ford with built-in Wi-Fi

When executing the vulnerability the attack renders the Wi-Fi connection unusable for the duration of the attack. Once the attack is over, the device will work normally. Other features of the device are unaffected by the Wi-Fi disruption.

According to Andrés Blanco, a researcher from Core Security told Ars Technica, “The only requirement to exploit the vulnerability is to have a wireless card that supports raw inject of 802.11 frames,”

Andrés Blanco did say, “We are not sure that we could retrieve private user data but we are going to look into this,” which does make this vulnerability seem less threatening.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s