RC4 Cipher Stream Reuse Vulnerability in Ekahau B4 Staff Badge Tag 5.7

RC4 Cipher Stream Reuse Vulnerability in Ekahau B4 Staff Badge Tag 5.7

CVE-2014-2716 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

Ekahau B4 staff badge tag 5.7 with firmware 1.4.52, Real-Time Location System (RTLS) Controller 6.0.5-FINAL, and Activator 3 reuses the RC4 cipher stream, which makes it easier for remote attackers to obtain plaintext messages via an XOR operation on two ciphertexts.

Learn more about our Web Application Penetration Testing UK.