CVE-2018-18907 Information

Description

An issue was discovered on D-Link DIR-850L 1.21WW devices. A partially completed WPA handshake is sufficient for obtaining full access to the wireless network. A client can access the network by sending packets on Data Frames to the AP without encryption.

Reference

https://www.synopsys.com/blogs/software-security/wpa2-encryption-bypass-defensics-fuzzing/ http://us.dlink.com/security-advisories/