{"id":1159647,"date":"2024-02-21T15:53:28","date_gmt":"2024-02-21T17:53:28","guid":{"rendered":"https:\/\/teknomers.com\/fr\/de-nouvelles-vulnerabilites-wi-fi-exposent-les-appareils-android-et-linux-aux-pirates\/"},"modified":"2024-02-21T15:53:32","modified_gmt":"2024-02-21T17:53:32","slug":"de-nouvelles-vulnerabilites-wi-fi-exposent-les-appareils-android-et-linux-aux-pirates","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/de-nouvelles-vulnerabilites-wi-fi-exposent-les-appareils-android-et-linux-aux-pirates\/","title":{"rendered":"De nouvelles vuln\u00e9rabilit\u00e9s Wi-Fi exposent les appareils Android et Linux aux pirates"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div>\n<p><span class=\"p-author\"><i class=\"icon-font icon-calendar\">\ue802<\/i><span class=\"author\">21 f\u00e9vrier 2024<\/span><i class=\"icon-font icon-user\">\ue804<\/i><span class=\"author\">R\u00e9daction<\/span><\/span><span class=\"p-tags\">S\u00e9curit\u00e9\/Vuln\u00e9rabilit\u00e9 du r\u00e9seau<\/span><\/p>\n<\/div>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both;\"><a rel=\"nofollow\" href=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2024\/02\/De-nouvelles-vulnerabilites-Wi-Fi-exposent-les-appareils-Android-et-Linux.jpg\" style=\"clear: left; display: block; float: left; text-align: center;\"><\/a><\/div>\n<p>Des chercheurs en cybers\u00e9curit\u00e9 ont identifi\u00e9 deux failles de contournement d&#8217;authentification dans les logiciels Wi-Fi open source pr\u00e9sents sur les appareils Android, Linux et ChromeOS, qui pourraient inciter les utilisateurs \u00e0 rejoindre un clone malveillant d&#8217;un r\u00e9seau l\u00e9gitime ou permettre \u00e0 un attaquant de rejoindre un r\u00e9seau de confiance sans mot de passe. .<\/p>\n<p>Les vuln\u00e9rabilit\u00e9s, suivies sous les noms CVE-2023-52160 et CVE-2023-52161, ont \u00e9t\u00e9 d\u00e9couvertes \u00e0 la suite d&#8217;une \u00e9valuation de s\u00e9curit\u00e9 de <a rel=\"nofollow noopener\" href=\"https:\/\/en.wikipedia.org\/wiki\/Wpa_supplicant\" target=\"_blank\">wpa_supplicant<\/a> et le d\u00e9mon sans fil iNet d&#8217;Intel (<a rel=\"nofollow noopener\" href=\"https:\/\/iwd.wiki.kernel.org\/\" target=\"_blank\">JIF<\/a>), respectivement.<\/p>\n<p>Les failles &#8220;permettent aux attaquants de tromper leurs victimes pour qu&#8217;elles se connectent \u00e0 des clones malveillants de r\u00e9seaux de confiance, interceptent leur trafic et rejoignent des r\u00e9seaux autrement s\u00e9curis\u00e9s sans avoir besoin du mot de passe&#8221;, Top10VPN <a rel=\"nofollow noopener\" href=\"https:\/\/www.top10vpn.com\/research\/wifi-vulnerabilities\/\" target=\"_blank\">dit<\/a> dans une nouvelle recherche men\u00e9e en collaboration avec Mathy Vanhoef, qui a d\u00e9j\u00e0 d\u00e9couvert des attaques Wi-Fi telles que KRACK, DragonBlood et TunnelCrack.<\/p>\n<div class=\"check_two clear bobbob\"><center class=\"cf\"><a rel=\"nofollow noopener\" href=\"https:\/\/thehackernews.uk\/freedom728\" target=\"_blank\" title=\"Cybersecurity\"><img loading=\"lazy\" decoding=\"async\" class=\"lazyload\" alt=\"La cyber-s\u00e9curit\u00e9\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2024\/02\/1708095444_689_RustDoor-macOS-Backdoor-cible-les-entreprises-de-crypto-monnaie-avec-de.jpg\" width=\"727\" height=\"90\"\/><\/a><\/center><\/div>\n<p>CVE-2023-52161, en particulier, permet \u00e0 un adversaire d&#8217;obtenir un acc\u00e8s non autoris\u00e9 \u00e0 un r\u00e9seau Wi-Fi prot\u00e9g\u00e9, exposant les utilisateurs et les appareils existants \u00e0 des attaques potentielles telles que des infections par des logiciels malveillants, le vol de donn\u00e9es et la compromission de la messagerie professionnelle (BEC).  Cela concerne les versions IWD 2.12 et inf\u00e9rieures.<\/p>\n<p>D&#8217;un autre c\u00f4t\u00e9, CVE-2023-52160 affecte les versions wpa_supplicant 2.10 et ant\u00e9rieures.  C&#8217;est \u00e9galement le plus pressant des deux d\u00e9fauts, car il s&#8217;agit du logiciel par d\u00e9faut utilis\u00e9 dans les appareils Android pour g\u00e9rer les demandes de connexion aux r\u00e9seaux sans fil.<\/p>\n<div class=\"separator\" style=\"clear: both;\"><a rel=\"nofollow noopener\" href=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgpAbE0cYKRTGtN-sY0vNCz87HN3Y2QqMysocKzdjyIavrkiH1lAh8_e2ShgDRQ5LnXRHLDiJcdLZtwUY2euckcHsVM6wiLWpOVZ34xRNNPaFXY5J9T9442vNSKh7iz_F6jMYW4qXyGkGdk3FdPjllQ7xwoQrmydEVC6TyXyvJjkVJ94nUEmKyhSp3_cqmk\/s728\/victim.jpg\" style=\"clear: left; display: block; float: left; text-align: center;\" target=\"_blank\"><img decoding=\"async\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2024\/02\/1708538007_844_De-nouvelles-vulnerabilites-Wi-Fi-exposent-les-appareils-Android-et-Linux.jpg\" alt=\"Nouvelles vuln\u00e9rabilit\u00e9s Wi-Fi\" border=\"0\" data-original-height=\"380\" data-original-width=\"728\" title=\"Nouvelles vuln\u00e9rabilit\u00e9s Wi-Fi\"\/><\/a><\/div>\n<p>Cela dit, cela ne concerne que les clients Wi-Fi qui ne sont pas correctement configur\u00e9s pour v\u00e9rifier le certificat du serveur d&#8217;authentification.  CVE-2023-52161, cependant, affecte tout r\u00e9seau utilisant un p\u00e9riph\u00e9rique Linux comme point d&#8217;acc\u00e8s sans fil (WAP).<\/p>\n<p><iframe loading=\"lazy\" title=\"New WiFi Vulnerabilities Explained &amp; How to Protect Yourself\" width=\"640\" height=\"360\" src=\"https:\/\/www.youtube.com\/embed\/o50ttLaMI9Y?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen><\/iframe><\/p>\n<p>L&#8217;exploitation r\u00e9ussie de CVE-2023-52160 repose sur la condition pr\u00e9alable que l&#8217;attaquant soit en possession du SSID d&#8217;un r\u00e9seau Wi-Fi auquel la victime s&#8217;est pr\u00e9alablement connect\u00e9e.  Cela n\u00e9cessite \u00e9galement que l\u2019acteur mena\u00e7ant se trouve \u00e0 proximit\u00e9 physique de la victime.<\/p>\n<p>&#8220;Un tel sc\u00e9nario possible pourrait \u00eatre celui o\u00f9 un attaquant parcourt le b\u00e2timent d&#8217;une entreprise \u00e0 la recherche de r\u00e9seaux avant de cibler un employ\u00e9 qui quitte le bureau&#8221;, ont d\u00e9clar\u00e9 les chercheurs.<\/p>\n<div class=\"check_two clear bobbob\"><center class=\"cf\"><a rel=\"nofollow noopener\" href=\"https:\/\/thehackernews.uk\/tcepdHrZ\" target=\"_blank\" title=\"Cybersecurity\"><img loading=\"lazy\" decoding=\"async\" class=\"lazyload\" alt=\"La cyber-s\u00e9curit\u00e9\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2024\/02\/Le-logiciel-malveillant-Bumblebee-revient-avec-de-nouvelles-astuces-ciblant.png\" width=\"727\" height=\"90\"\/><\/a><\/center><\/div>\n<p>Les principales distributions Linux telles que Debian (<a rel=\"nofollow noopener\" href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2023-52160\" target=\"_blank\">1<\/a>, <a rel=\"nofollow noopener\" href=\"https:\/\/security-tracker.debian.org\/tracker\/CVE-2023-52161\" target=\"_blank\">2<\/a>), Chapeau rouge (<a rel=\"nofollow noopener\" href=\"https:\/\/access.redhat.com\/security\/cve\/cve-2023-52160\" target=\"_blank\">1<\/a>), SUSE (<a rel=\"nofollow noopener\" href=\"https:\/\/www.suse.com\/security\/cve\/CVE-2023-52160.html\" target=\"_blank\">1<\/a>, <a rel=\"nofollow noopener\" href=\"https:\/\/www.suse.com\/security\/cve\/CVE-2023-52161.html\" target=\"_blank\">2<\/a>) et Ubuntu (<a rel=\"nofollow noopener\" href=\"https:\/\/ubuntu.com\/security\/CVE-2023-52160\" target=\"_blank\">1<\/a>, <a rel=\"nofollow noopener\" href=\"https:\/\/ubuntu.com\/security\/CVE-2023-52161\" target=\"_blank\">2<\/a>) ont publi\u00e9 des avis concernant les deux failles.  Le probl\u00e8me wpa_supplicant a \u00e9galement \u00e9t\u00e9 r\u00e9solu dans ChromeOS \u00e0 partir des versions 118 et ult\u00e9rieures, mais des correctifs pour Android ne sont pas encore disponibles.<\/p>\n<p>&#8220;En attendant, il est donc essentiel que les utilisateurs d&#8217;Android configurent manuellement le certificat CA de tout r\u00e9seau d&#8217;entreprise enregistr\u00e9 pour emp\u00eacher l&#8217;attaque&#8221;, a d\u00e9clar\u00e9 Top10VPN.<\/p>\n<p><\/p>\n<div class=\"cf note-b\">Vous avez trouv\u00e9 cet article int\u00e9ressant ?  Suivez-nous sur <a rel=\"nofollow noopener\" href=\"https:\/\/twitter.com\/thehackersnews\" target=\"_blank\">Twitter <i class=\"icon-font icon-twitter\">\uf099<\/i><\/a>  et <a rel=\"nofollow noopener\" href=\"https:\/\/www.linkedin.com\/company\/thehackernews\/\" target=\"_blank\">LinkedIn<\/a> pour lire plus de contenu exclusif que nous publions.<\/div>\n<\/div>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\n<br \/><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2024\/02\/new-wi-fi-vulnerabilities-expose.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\ue80221 f\u00e9vrier 2024\ue804R\u00e9dactionS\u00e9curit\u00e9\/Vuln\u00e9rabilit\u00e9 du r\u00e9seau Des chercheurs en cybers\u00e9curit\u00e9 ont identifi\u00e9 deux failles de contournement d&#8217;authentification dans les logiciels Wi-Fi open source pr\u00e9sents sur les appareils Android, Linux et ChromeOS, qui pourraient inciter les utilisateurs \u00e0 rejoindre un clone malveillant d&#8217;un r\u00e9seau l\u00e9gitime ou permettre \u00e0 un attaquant de rejoindre un r\u00e9seau de confiance sans [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":1159649,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[200292,8738,8737,507,4168,4165,4161,200267,39576,4159,4171,65,18088,200271,200268,120,200269,200270,4394,128318,4172,4169,4166,4164,12365,24854],"class_list":["post-1159647","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-actualites-sur-la-cybersecurite","tag-android","tag-appareils","tag-aux","tag-comment-pirater","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-cyberactualites","tag-exposent","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-les","tag-linux","tag-logiciel-malveillant-rancongiciel","tag-mises-a-jour-sur-la-cybersecurite","tag-nouvelles","tag-nouvelles-des-pirates","tag-nouvelles-sur-le-piratage","tag-pirates","tag-securite-des-informations","tag-securite-informatique","tag-securite-internet","tag-violation-de-donnees","tag-vulnerabilite-logicielle","tag-vulnerabilites","tag-wifi"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1159647","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=1159647"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1159647\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/1159649"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=1159647"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=1159647"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=1159647"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}