Broken wpa_passphrase - \n characters are not parsed
Michael Vogt
michael at neeo.com
Mon Dec 5 02:17:55 PST 2016
Hi
I was playing around with wpa_passphrase and discovered, that newlines are not stripped away when using wpa_passphrase (similar like CVE-2016-4476?). So if someone uses wpa_passphrase to generate a configuration file a user might add arbitrary data to the configuration file, example:
[root at linux ~]# wpa_passphrase "FOO
> BAR
> #" "PASS
> EAP=MD5
> #”
network={
ssid="FOO
BAR
#"
#psk="PASS
EAP=MD5
#"
psk=7adcbee301dc48f0fb7f7a061283ac51232d11414547225bcdbc1307b56e5509
}
I guess this should be handled correctly in wpa_passphrase, but I might be wrong.
cheers
Michael
More information about the Hostap
mailing list