Urmas Kahar and Tarmo Kaljumae have reported a security issue in Avaya Wireless Access Points products, which can be exploited by malicious people to bypass certain security restrictions.
The problem is caused due to the presence of a static WEP key set to "12345". This can be exploited to bypass the 802.1x authentication process.
Successful exploitation allows access to network resources.
The security issue affects the following products:
* Avaya Wireless Access Points AP-3, AP-4, AP-5, and AP-6 (All versions after 2.5 to 2.5.4)
* Avaya Wireless Access Points AP-7 and AP-8 (All versions after 2.5 and prior to 3.1)
Do you have additional information related to this advisory?
Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this
information to firstname.lastname@example.org