RSS   Vulnerabilities for 'Airport extreme'   RSS

2010-12-21
 
CVE-2010-1804

CWE-noinfo
 

 
Unspecified vulnerability in the network bridge functionality on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 allows remote attackers to cause a denial of service (networking outage) via a crafted DHCP reply.

 
2010-03-10
 
CVE-2010-0962

CWE-264
 

 
The FTP proxy server in Apple AirPort Express, AirPort Extreme, and Time Capsule with firmware 7.5 does not restrict the IP address and port specified in a PORT command from a client, which allows remote attackers to leverage intranet FTP servers for arbitrary TCP forwarding via a crafted PORT command.

 
2010-12-21
 
CVE-2010-0039

CWE-264
 

 
The Application-Level Gateway (ALG) on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 modifies PORT commands in incoming FTP traffic, which allows remote attackers to use the device's IP address for arbitrary intranet TCP traffic by leveraging write access to an intranet FTP server.

 
 
CVE-2009-2189

CWE-399
 

 
The ICMPv6 implementation on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 does not limit the rate of (1) Router Advertisement and (2) Neighbor Discovery packets, which allows remote attackers to cause a denial of service (resource consumption and device restart) by sending many packets.

 
2007-03-08
 
CVE-2007-1338

 

 
The default configuration of the AirPort utility in Apple AirPort Extreme creates an IPv6 tunnel but does not enable the "Block incoming IPv6 connections" setting, which might allow remote attackers to bypass intended access restrictions by establishing IPv6 sessions that would have been rejected over IPv4.

 
2005-12-31
 
CVE-2005-3714

 

 
The network interface for Apple AirPort Express 6.x before Firmware Update 6.3, and AirPort Extreme 5.x before Firmware Update 5.7, allows remote attackers to cause a denial of service (unresponsive interface) via malformed packets.

 
2005-05-02
 
CVE-2005-0289

 

 
Apple AirPort Express prior to 6.1.1 and Extreme prior to 5.5.1, configured as a Wireless Data Service (WDS), allows remote attackers to cause a denial of service (device freeze) by connecting to UDP port 161 and before link-state change occurs.

 

 >>> Vendor: Apple 126 Products
IOS
Appleshare
A UX
JAVA
Mac os
Mac os x
Ichat server
Appleshare mail server
Webobjects
Mac os runtime for java
CUPS
Quicktime
Personal web sharing
Claris emailer
Mac os x server
Tcp ip configuration utility
Darwin streaming server
Quicktime streaming server
Quicktime darwin mp3 broadcaster
802.11n
Safari
Afp server
ICAL
Ichat
Ichat av
Remote desktop
Apache mod digest apple
Xcode
Itunes
Airport express
Airport extreme
Quicktime pictureviewer
Applescript
Terminal
Keynote
Airport card
MAIL
Weblog server
Textedit
Imageio
XSAN
Bomarchivehelper
Iphoto
Preview
Webkit
Minimal slp service agent
Software update
Cfnetwork
Installer
Webcore
Instant message framework
Mdnsresponder
Imovie
Mac os x preview.app
Server manager
Xserve lights-out management
Iphone
Pdfkit
Quartz composer
Core audio technologies
Iphone os
Mobile safari
Aperture
Podcast producer
Apple airport extreme base station
Core image fun house
Xcode tools
Carboncore
Coregraphics
Data detectors engine
Quicklook
Bonjour
Motion
Ipod touch
Iphone configuration web utility
Quicktime mpeg-2 playback component
Airport express base station firmware
Airport extreme base station firmware
Time capsule
Garageband
Java 1.4
Java 1.5
Java 1.6
Airport utility
Libsecurity
Apple type services
Apple tv
Ipad2
Apple remote desktop
Swift
Olive toast documents pro file viewer
Airport base station firmware
Os x server
Pages
Boot camp
Watch os
Watchos
Iwork
Numbers
Ibooks author
See all Products for Vendor Apple


Copyright 2024, cxsecurity.com

 

Back to Top