PT-2015-6848 · Hostap+3 · Hostapd+3
Jouni Malinen
·
Published
2015-11-10
·
Updated
2024-06-15
·
CVE-2015-5314
CVSS v3.1
5.9
Medium
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
hostapd versions 2.0 through 2.5
Description
The issue is related to the
eap pwd process function in eap server/eap server pwd.c, which does not validate the size of the reassembly buffer for the final fragment in EAP-pwd messages. This can be exploited by remote attackers to cause a denial of service (process termination) by sending a large final fragment in an EAP-pwd message, particularly when used with an internal EAP server or a RADIUS server with EAP-pwd enabled.Recommendations
For hostapd versions 2.0 through 2.5, update to version 2.6 or later to resolve the issue.
Fix
DoS
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Suse
Ubuntu
Hostapd