eapmd5pass 'extract_eapusername' function denial of service vulnerability
eapmd5pass is a penetration testing tool for attacks against the EAP-MD5 protocol. A security vulnerability exists in the 'extracteapusername' function in eapmd5pass version 1.4. A remote attacker can exploit this vulnerability by generating specially crafted network traffic to cause the eapmd5pa...