NXP Semiconductors MIFARE Classic Smartcard - Multiple Security Weaknesses

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1056916 漏洞类型
发布时间 2008-10-21 更新时间 2008-10-21
CVE编号 N/A CNNVD-ID N/A
漏洞平台 Multiple CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/32501
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/31853/info

MIFARE Classic is prone to multiple security weaknesses:

1. A security weakness may allow attackers to recover the internal state of the linear feedback shift register.

2. A security weakness may allow attackers to recover the previous state of the linear feedback shift register.

3. A security weakness may allow attackers to invert the filter function and potentially gain access to the private key.

4. A security weakness may allow attackers to reduce the search space for tag nonces.

Exploiting these issues in combination may allow attackers to gain access to the smartcard's secret key. Successful exploits will allow attackers with physical access to an RFID reader to bypass certain physical security restrictions. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/32501.tgz