Apple AirPort Base Station MAC Address ACL Remote Security Bypass Vulnerability
BID:39134
Info
Apple AirPort Base Station MAC Address ACL Remote Security Bypass Vulnerability
| Bugtraq ID: | 39134 |
| Class: | Design Error |
| CVE: |
CVE-2009-2822 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 31 2010 12:00AM |
| Updated: | Mar 31 2010 12:00AM |
| Credit: | Guido Lamberty |
| Vulnerable: |
Apple AirPort Base Station |
| Not Vulnerable: |
Apple AirPort Utility 5.5.1 |
Discussion
Apple AirPort Base Station MAC Address ACL Remote Security Bypass Vulnerability
Apple AirPort Base Station is prone to a security-bypass vulnerability.
Attackers can exploit this issue to access networks that should be restricted. This may lead to other attacks.
AirPort Base Station running versions prior to AirPort Utility 5.5.1 are vulnerable.
Apple AirPort Base Station is prone to a security-bypass vulnerability.
Attackers can exploit this issue to access networks that should be restricted. This may lead to other attacks.
AirPort Base Station running versions prior to AirPort Utility 5.5.1 are vulnerable.
Exploit / POC
Apple AirPort Base Station MAC Address ACL Remote Security Bypass Vulnerability
Attackers can use readily available utilities to exploit this issue.
Attackers can use readily available utilities to exploit this issue.
Solution / Fix
Apple AirPort Base Station MAC Address ACL Remote Security Bypass Vulnerability
Solution:
Updates are available. Please see the references for details.
Apple AirPort Base Station
Solution:
Updates are available. Please see the references for details.
Apple AirPort Base Station
-
Apple AirPortSetup.exe
http://www.apple.com/support/downloads/ -
Apple AirPortUtility551.dmg
http://www.apple.com/support/downloads/
References
Apple AirPort Base Station MAC Address ACL Remote Security Bypass Vulnerability
References:
References: