NVD

Id
20112  
Name
CVE-2016-4476  
Description
hostapd 0.6.7 through 2.5 and wpa_supplicant 0.6.7 through 2.5 do not reject and characters in passphrase parameters, which allows remote attackers to cause a denial of service (daemon outage) via a crafted WPS operation.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-19  
Published
2016-05-09  
Modified Date
2016-05-10  
Seq
2016-4476  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
109776 20112 CVE-2016-4476 [oss-security] 20160503 Re: hostapd/wpa_supplicant - psk configuration parameter update allowing arbitrary data to be written  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
1766 JVNDB-2016-002539 hostapd および wpa_supplicant におけるサービス運用妨害 (DoS) の脆弱性 hostapd および wpa_supplicant は、passphrase パラメータの および 文字を拒否しないため、サービス運用妨害 (デーモンの停止) 状態にされる脆弱性が存在します。 CVE-2016-4476 90982 CVE-2016-4476 20112 5 7.5 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-002539.html 2016-05-02 2016-05-12 View