A rolling code system in keyless entry systems is to prevent replay attack.
After each keyfob button is pressed the rolling codes synchronizing counter is increased.
By sending the commands in a consecutive sequence to the Honda vehicles, it will be resynchronizing the counter.
Once counter resynced, commands from the previous cycle of the counter worked again.
Therefore, those commands can be used later to unlock the car at will.
The researchers also published a set of PoC videos, which shows how the rolling code mechanism was pwned.
What Is The Fix For The Rolling-PWN Bug?
However, some old vehicles may not support OTA.
Therefore, they filed a report to Honda Customer service, but we have not received any reply yet.
This is not the first time that Hondas line of vehicles was found with access vulnerabilities.
source: www.techworm.net
