Anyone like to guess how many years/decades it will be before firmware fixes are offered to all the zillions of Androids and usb wifi setups using the Broadcom 43xx chip?
The CVE reads like a skiddy’s wet-dream – easy to implement, no authentication required and gives pretty much full control of the device and network. Even better it works on nearly everything that has wifi in it. When you read that it cracks iOS, Androids and most laptops, it is not too surprising that GCHQ/NSA did not seem to share in the Government hysteria over encryption.
.
