Cake Poker Network uses weak encryption, poor security practices.

Description:
The Cake poker network uses a weak xor based encryption mechanism for all network transmissions instead of the industry standard SSL. The encryption key is sent in plain text and can be used to dump data from the datastream to the cake client application.

In our lab we are able to intercept and decode the user’s login name (e-mail address), screen name, and password in plain text, as well as their seat number and hole cards. We’ve also been able to remotely display all seat numbers and hole cards on a compromised network.

All proof of concepts have been shown to work over a compromised WPA2 encrypted wireless network as well as unencrypted wireless networks, and physical network access (either through a hub, ARP man in the middle attack, or otherwise).

Solution

Vendor has been notified of the vulnerability and advised to upgrade their software to use the free open source OpenSSL library. No solution available from Cake as of yet.

User Recommendations

PTR recommends that you discontinue using the Cake network until this issue is addressed.

If you continue to play on Cake PTR recommends that you physically plug into your modem and bypass any switch, router, wireless network or other network device. We do not recommend playing on any unknown network connections.

Update 2010-08-04: Cake poker version 1.0 client has added SSL support. Beta client has not added SSL support, nor have most/all of the skins. Please check for ssleay32.dll in the installation directory of your skin to see if it is safe to play on.

This entry was posted on Monday, July 26th, 2010 at 1:55 pm and is filed under Articles. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.