Blog | G5 Cyber Security

BroadPwn Vulnerability: Is Your Computer at Risk?

G5 Cyber Security

TL;DR

BroadPwn is a serious security flaw affecting some Wi-Fi chips, potentially allowing attackers to take control of your computer. Check if your Wi-Fi adapter is affected and update its drivers immediately if it is. If you can’t update, consider using an Ethernet connection or a different Wi-Fi adapter.

What is BroadPwn?

BroadPwn (CVE-2017-10933) is a vulnerability found in some Broadcom Wi-Fi chips. It allows attackers to execute arbitrary code on your computer through specially crafted network packets. This means they could potentially install malware, steal data, or take complete control of your system.

Is My Computer Vulnerable?

  1. Identify Your Wi-Fi Adapter: The first step is to find out which Wi-Fi adapter you have. On Windows, open Device Manager (search for it in the Start Menu). Expand ‘Network adapters’.
  2. Check the List: Look for Broadcom adapters in the list. Note down the exact model number.
  3. Vulnerable Models: The following Broadcom Wi-Fi chips are known to be vulnerable:
    • BC43601
    • BC43602
    • BC43758
    • BC43760
  4. Online Tools: You can also use online tools to help identify your adapter and its vulnerability status. A useful resource is BroadPwn’s official website.

How Can I Protect Myself?

  1. Update Your Drivers: The most important step is to update your Wi-Fi adapter drivers to the latest version. Broadcom has released updated drivers that fix the vulnerability.
    • Windows Update: Check Windows Update for available driver updates.
    • Manufacturer’s Website: Visit the website of your computer manufacturer (e.g., Dell, HP, Lenovo) and download the latest Wi-Fi drivers specifically for your model.
    • Device Manager: In Device Manager, right-click on your Broadcom adapter and select ‘Update driver’. Choose ‘Search automatically for updated driver software’.
  2. Disable Vulnerable Adapter (If Update is Not Possible): If you can’t update the drivers, consider disabling the vulnerable Wi-Fi adapter.
    • In Device Manager, right-click on your Broadcom adapter and select ‘Disable device’.
  3. Use Ethernet: The safest option is to use a wired Ethernet connection instead of Wi-Fi whenever possible.
  4. Consider a Different Adapter: If you rely heavily on Wi-Fi, consider replacing your vulnerable adapter with one from a different manufacturer that isn’t affected by BroadPwn.

Checking Driver Version

To check the version of your current driver:

  1. Open Device Manager (search for it in the Start Menu).
  2. Expand ‘Network adapters’.
  3. Right-click on your Broadcom adapter and select ‘Properties’.
  4. Go to the ‘Driver’ tab.
  5. The driver version will be displayed there. Compare this with the latest available version from the manufacturer’s website.

Command Line Example (Windows)

You can also use the command line to get information about your network adapters:

netsh wlan show drivers

This will display a list of all Wi-Fi adapters and their associated driver details.

Exit mobile version