Recently Chung et al proposed three party authenticated key exchange protocol. Lo et al demonstrated that Chung et al protocol is vulnerable to undetectable online dictionary attack and proposed a modified protocol. Unfortunately, this paper shows that Lo et al protocol is not secure and suffers from undetectable online password guessing attack.