Vulnerabilities > CVE-2016-10743 - Insufficient Entropy in PRNG vulnerability in W1.Fi Hostapd

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

nessus

NVD

Published: 2019-03-23

Updated: 2019-04-10

Summary

hostapd before 2.6 does not prevent use of the low-quality PRNG that is reached by an os_random() function call.

Part	Description	Count
Application	W1.Fi W1.Fi Hostapd 0.2.0 W1.Fi Hostapd 0.2.1 W1.Fi Hostapd 0.2.2 W1.Fi Hostapd 0.2.4 W1.Fi Hostapd 0.3.0 W1.Fi Hostapd 0.3.1 W1.Fi Hostapd 0.3.2 W1.Fi Hostapd 0.3.3 W1.Fi Hostapd 0.3.4 W1.Fi Hostapd 0.3.5 W1.Fi Hostapd 0.3.7 W1.Fi Hostapd 0.4.0 W1.Fi Hostapd 0.4.1 W1.Fi Hostapd 0.4.2 W1.Fi Hostapd 0.4.3 W1.Fi Hostapd 0.4.4 W1.Fi Hostapd 0.4.5 W1.Fi Hostapd 0.4.6 W1.Fi Hostapd 0.4.7 W1.Fi Hostapd 0.5.0 W1.Fi Hostapd 0.5.1 W1.Fi Hostapd 0.5.2 W1.Fi Hostapd 0.5.3 W1.Fi Hostapd 0.5.4 W1.Fi Hostapd 0.5.5 W1.Fi Hostapd 0.5.6 W1.Fi Hostapd 0.6.0 W1.Fi Hostapd 0.6.1 W1.Fi Hostapd 0.6.2 W1.Fi Hostapd 0.6.3 W1.Fi Hostapd 0.6.4 W1.Fi Hostapd 0.6.5 W1.Fi Hostapd 0.6.6 W1.Fi Hostapd 0.6.7 W1.Fi Hostapd 0.7.0 W1.Fi Hostapd 0.7.1 W1.Fi Hostapd 0.7.2 W1.Fi Hostapd 0.7.3 W1.Fi Hostapd 1.1 W1.Fi Hostapd 2.0 W1.Fi Hostapd 2.1 W1.Fi Hostapd 2.2 W1.Fi Hostapd 2.3 W1.Fi Hostapd 2.4 W1.Fi Hostapd 2.5	45

NASL family	Debian Local Security Checks
NASL id	DEBIAN_DLA-2138.NASL
description	Similar to CVE-2016-10743 the host access point daemon, hostapd, in EAP mode used a low quality pseudorandom number generator that leads to insufficient entropy. The problem was resolved by using the os_get_random function which provides cryptographically strong pseudo random data. For Debian 8
last seen	2020-03-17
modified	2020-03-12
plugin id	134430
published	2020-03-12
reporter	This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/134430
title	Debian DLA-2138-1 : wpa security update

NASL family	Ubuntu Local Security Checks
NASL id	UBUNTU_USN-3944-1.NASL
description	It was discovered that wpa_supplicant and hostapd were vulnerable to a side channel attack against EAP-pwd. A remote attacker could possibly use this issue to recover certain passwords. (CVE-2019-9495) Mathy Vanhoef discovered that wpa_supplicant and hostapd incorrectly validated received scalar and element values in EAP-pwd-Commit messages. A remote attacker could possibly use this issue to perform a reflection attack and authenticate without the appropriate password. (CVE-2019-9497, CVE-2019-9498, CVE-2019-9499) It was discovered that hostapd incorrectly handled obtaining random numbers. In rare cases where the urandom device isn
last seen	2020-06-01
modified	2020-06-02
plugin id	123999
published	2019-04-11
reporter	Ubuntu Security Notice (C) 2019-2020 Canonical, Inc. / NASL script (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/123999
title	Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 18.10 : wpa vulnerabilities (USN-3944-1)

NASL family	Debian Local Security Checks
NASL id	DEBIAN_DLA-1733.NASL
description	It was found that the fallback mechanism for generating a WPS pin in hostapd, an IEEE 802.11 AP and IEEE 802.1X/WPA/WPA2/EAP Authenticator, used a low quality pseudorandom number generator. This was resolved by using only the high quality os_get_random function. For Debian 8
last seen	2020-06-01
modified	2020-06-02
plugin id	123470
published	2019-03-29
reporter	This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/123470
title	Debian DLA-1733-1 : wpa security update