topic Re: Wi-fi vulnerabilities on SMB Appliances in Spark Firewall (SMB)

Wi-fi vulnerabilities on SMB Appliances

pnormanmtvh — Thu, 13 May 2021 10:22:31 GMT

Hi,

I would like to raise a query re: Checkpoint's response to the recently released statement on the aggregation and fragmentation attacks against WiFi. Some other vendors have produced guidance on this e.g when patches/firmware will be coming out to mitigate against these risks but I can't see anything from Checkpoint. Are you able to supply any more guidance on this?

https://www.icasi.org/aggregation-fragmentation-attacks-against-wifi/

Obviously some the SMB appliances have integrated Wireless (e.g the 1590 appliance)

Thanks - pnormanmtvh

Re: Wi-fi vulnerabilities on SMB Appliances

PhoneBoy — Thu, 13 May 2021 22:28:17 GMT

I’ll ask around.
Meanwhile, I recommend a TAC case for a formal response.

Re: Wi-fi vulnerabilities on SMB Appliances

G_W_Albrecht — Wed, 26 May 2021 05:45:50 GMT

Any response yet ?

Re: Wi-fi vulnerabilities on SMB Appliances

AntoinetteHodes — Wed, 26 May 2021 07:23:55 GMT

I have also asked internally if we are vulnerable for the Frag attack. Having said that, all attacks can only be launched from the internal network. The vulnerabilities are using 802.11 design flaws on frame aggregation and fragmentation. Once we know more about risk, severity, exploitation factor etc. I will update you all.

Re: Wi-fi vulnerabilities on SMB Appliances

Amir_Ayalon — Wed, 26 May 2021 07:33:06 GMT

There are several CVE there which are based on the 802.11 standard design, (and flaws) which are related to the way the standard handles frame aggregation and fragmentation.

We are working with the WiFi Vendor, and once fixes will be available, we will deploy them.

First analysis suggest you may be vulnerable only in close proximity as the described attacks can only carried out from the internal wireless network and therefore require physical proximity.

Re: Wi-fi vulnerabilities on SMB Appliances

Steffen_Appel — Thu, 17 Jun 2021 14:19:26 GMT

Any updates? Many other companies already provude fixes.

Re: Wi-fi vulnerabilities on SMB Appliances

PhoneBoy — Thu, 17 Jun 2021 22:54:18 GMT

I assume you have a TAC case open on this, correct?

Re: Wi-fi vulnerabilities on SMB Appliances

Steffen_Appel — Fri, 18 Jun 2021 11:29:19 GMT

No, I was referring to Amir, who said, that CP is working with the vendors on it.

Re: Wi-fi vulnerabilities on SMB Appliances

pnormanmtvh — Fri, 18 Jun 2021 11:47:57 GMT

The TAC case for this is: 6-0002681820

Re: Wi-fi vulnerabilities on SMB Appliances

Naftali_Oziel — Fri, 25 Jun 2021 10:49:01 GMT

Amir, does this apply for SMB 1400 series appliances that also have the integrated WiFi. I see talks about 1500 series hope no one is forgetting the others.

Pls advise.

Re: Wi-fi vulnerabilities on SMB Appliances

the_rock — Fri, 25 Jun 2021 14:09:36 GMT

Did they say anything? I also looked at below link, but cant find much for this

2021 | Check Point Software

Re: Wi-fi vulnerabilities on SMB Appliances

Naftali_Oziel — Fri, 25 Jun 2021 14:27:35 GMT

no info as of yet from CP.

Re: Wi-fi vulnerabilities on SMB Appliances

the_rock — Fri, 25 Jun 2021 14:31:22 GMT

I would definitely bring that up to someone in TAC, because any vendor should and must have response to things like this.

Re: Wi-fi vulnerabilities on SMB Appliances

Naftali_Oziel — Fri, 25 Jun 2021 15:09:48 GMT

already did...but it's no show response or unknown response for now.

Re: Wi-fi vulnerabilities on SMB Appliances

Amir_Ayalon — Sat, 26 Jun 2021 18:32:32 GMT

Hi Guys

TAC was updated, so i wonder why the message didn't convey..

Anyway -

we have a fix ready, and it will be available on the next SMB release. (R80.20.30 - around the first week of July)

If your need a solution sooner, we can deliver a jumbo fix on top of R80.20.25. please contact TAC

Thanks

Re: Wi-fi vulnerabilities on SMB Appliances

Naftali_Oziel — Sat, 26 Jun 2021 18:56:47 GMT

Hi Amir aware for R80.20. for CP 1500 series +

My inquiry is specific to R77.20.87 for those that are still running on CP1400 series?? did open with TAC and it's unknown?

Re: Wi-fi vulnerabilities on SMB Appliances

Steffen_Appel — Mon, 28 Jun 2021 08:51:04 GMT

Hi Amir,

thank you for the update!

What about the 1400s (77.20.87) and the 1100s (77.20.80), which are both still covered by support?

Is there any SK for these issues?

Re: Wi-fi vulnerabilities on SMB Appliances

AntoinetteHodes — Mon, 12 Jul 2021 16:05:18 GMT

Hi all, I am happy to share with you sk173718. As you can see the severity is low and has been fixed.

Enjoy!

Re: Wi-fi vulnerabilities on SMB Appliances

XavierBens — Mon, 12 Jul 2021 16:28:45 GMT

@Naftali_Oziel , @pnormanmtvh you have your answer

Re: Wi-fi vulnerabilities on SMB Appliances

Naftali_Oziel — Mon, 12 Jul 2021 17:03:24 GMT

Thanks for the 700/900/1400 firmware why is it older than the current GA? Does that make sense?