4 matches found
Denial Of Service (DoS)
wpasupplicant is vulnerable to denial of service DoS attacks. The vulnerability exists as Integer underflow in the WMM Action frame parser in hostapd 0.5.5 through 2.4 and wpasupplicant 0.7.0 through 2.4, when used for AP mode MLME/SME functionality, allows remote attackers to cause a denial of...
Oracle: Security Advisory (ELSA-2015-1439)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
hostapd and wpa_supplicant WMM Action Frame Parser Integer Overflow Vulnerability
hostapd is a daemon that implements a wireless access point AP and authentication server. wpasupplicant is a daemon that runs in the background and is used to support WEP, WPA/WPA2 and WAPI wireless protocols and encrypted authentication. An integer overflow vulnerability exists in the WMM Action...
CVE-2015-4142
CVE-2015-4142 involves an integer underflow in the WMM Action frame processing when hostapd/wpa_supplicant run in AP mode (MLME/SME). A crafted frame can trigger an out-of-bounds read, potentially crashing the daemon. Affected products include hostapd and wpa_supplicant (various versions up to 2....