Denial of Service Vulnerability in EAP-pwd Confirm Message Handling in wpa_supplicant

Denial of Service Vulnerability in EAP-pwd Confirm Message Handling in wpa_supplicant

CVE-2015-5316 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The eap_pwd_perform_confirm_exchange function in eap_peer/eap_pwd.c in wpa_supplicant 2.x before 2.6, when EAP-pwd is enabled in a network configuration profile, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an EAP-pwd Confirm message followed by the Identity exchange.

Learn more about our Cis Benchmark Audit For Microsoft Exchange Server.