2016-05-09 10:00:00
mitre
PUBLISHED
hostapd 0.6.7 through 2.5 and wpa_supplicant 0.6.7 through 2.5 do not reject n and r characters in passphrase parameters, which allows remote attackers to cause a denial of service (daemon outage) via a crafted WPS operation.