PCWorld: WPA2 has enjoyed a reputation as the strongest form of encryption and authentication available for Wi-Fi. However, security researchers say that they have found a hole which makes the security protocol vulnerable to attacks. While they haven't broken WPA2's Advanced Encryption Standard (AES) derivative, they have revealed a way to conduct a "man-in-the-middle" attack. Such an attack would require an authorized user to be in on the scheme.
The company that discovered the vulnerability says, "There's nothing in the standard to upgrade to in order to patch or fix the hole."