Secunia Security Advisory - A vulnerability has been reported in Apple AirPort Extreme, which can be exploited by malicious people to cause a DoS (Denial of Service).
2cd53431943cac8cce1f7448db1e05d593d7f3bc98eb9660d9a2208f6f27bc38
TITLE:
Apple AirPort Extreme Base Station Network Interface Denial of
Service
SECUNIA ADVISORY ID:
SA18319
VERIFY ADVISORY:
http://secunia.com/advisories/18319/
CRITICAL:
Less critical
IMPACT:
DoS
WHERE:
>From local network
OPERATING SYSTEM:
Apple Airport Express
http://secunia.com/product/4503/
Apple Airport Extreme
http://secunia.com/product/4504/
DESCRIPTION:
A vulnerability has been reported in Apple AirPort Extreme, which can
be exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to an unspecified error in the base
station when handling certain network packets. This can be exploited
to cause the base station's network interface to stop responding via
specially crafted network packets.
SOLUTION:
Apply updated firmware.
AirPort Extreme Firmware Update 5.7 (Mac OS X):
http://www.apple.com/support/downloads/airportextremefirmwareupdate57formacosx.html
AirPort Extreme Firmware Update 5.7 (Windows):
http://www.apple.com/support/downloads/airportextremefirmwareupdate57forwindows.html
AirPort Express Firmware Update 6.3 (Mac OS X):
http://www.apple.com/support/downloads/airportexpressfirmwareupdate63formacosx.html
AirPort Express Firmware Update 6.3 (Windows):
http://www.apple.com/support/downloads/airportexpressfirmwareupdate63forwindows.html
PROVIDED AND/OR DISCOVERED BY:
The vendor credits Michael Zanetta, NETwork Security Consortium.
ORIGINAL ADVISORY:
http://docs.info.apple.com/article.html?artnum=303072
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------