NXP Semiconductors MIFARE Classic Smartcard - Multiple Vulnerabilities

EDB-ID:

32501

CVE:

N/A

EDB Verified:

Author:

Flavio D. Garcia

Type:

local

Exploit:   /  

Platform:

Multiple

Date:

2008-10-21

Vulnerable App: 
source: https://www.securityfocus.com/bid/31853/info

MIFARE Classic is prone to multiple security weaknesses:

1. A security weakness may allow attackers to recover the internal state of the linear feedback shift register.

2. A security weakness may allow attackers to recover the previous state of the linear feedback shift register.

3. A security weakness may allow attackers to invert the filter function and potentially gain access to the private key.

4. A security weakness may allow attackers to reduce the search space for tag nonces.

Exploiting these issues in combination may allow attackers to gain access to the smartcard's secret key. Successful exploits will allow attackers with physical access to an RFID reader to bypass certain physical security restrictions. 

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/32501.tgz
Tags:
Advisory/Source: Link
Databases Links Sites Solutions
Exploits Search Exploit-DB OffSec Courses and Certifications
Google Hacking Submit Entry Kali Linux Learn Subscriptions
Papers SearchSploit Manual VulnHub OffSec Cyber Range
Shellcodes Exploit Statistics Proving Grounds
Penetration Testing Services
Exploits Google Hacking Papers Shellcodes
Search Exploit-DB Submit Entry SearchSploit Manual Exploit Statistics
OffSec Kali Linux VulnHub
Courses and Certifications Learn Subscriptions OffSec Cyber Range Proving Grounds Penetration Testing Services