Britain's biggest technology magazine
SEARCH FOR: IN: Advanced Search
Guest  Level 00    Register Log in

News 

[PSUs]
Friday 22nd September 2006
Apple secures AirPort 11:16AM, Friday 22nd September 2006
Apple has released a security update that addresses flaws in its AirPort wireless networking software.

The update fixes vulnerabilities that could result in arbitrary code execution, system crashes or privilege elevation.

The first flaw (CVE-ID: CVE-2006-3507) results from two separate stack buffer overflows that exist in the AirPort wireless driver's handling of malformed frames. An attacker in local proximity may be able to trigger an overflow by injecting a maliciously-crafted frame into a wireless network. When the AirPort is on, this could lead to arbitrary code execution with system privileges. There is no known exploit for this issue. The update makes AirPort perform additional validation of wireless frames.

The second flaw (CVE-2006-3508) is a result of a heap buffer overflow that exists in the AirPort wireless driver's handling of scan cache updates. An attacker in local proximity may be able to trigger the overflow by injecting a maliciously-crafted frame into the wireless network. This could lead to a system crash, privilege elevation,
 
 
ADVERTISEMENT
or arbitrary code execution with system privileges. As above, there is no known exploit for this issue.

The third flaw (CVE-2006-3509) is caused by an integer overflow in the Airport wireless driver's API for third-party wireless software. This could lead to a buffer overflow in such applications dependent upon API usage. No applications are known to be affected at this time. If an application is affected, then an attacker in local proximity may be able to trigger an overflow by injecting a maliciously-crafted frame into the wireless network. This may cause crashes or lead to arbitrary code execution with the privileges of the user running the application. Again there is no known exploit for this issue.

The first vulnerability affects Mac OS X 10.3.9 Panther and 10.4.7 Tiger server and client versions. The other two only affect Tiger.

Security Update 2006-005 is available via Software Update or from apple.com/support/downloads. It is also available as a standalone AirPort update. For more information on the update see About the security content of AirPort Update 2006-001 and Security Update 2006-005.
Simon Aughton

Submit to: Digg  |  Slashdot  |  Del.icio.us  |  Technorati

Related News


Sponsored Links
Looking for Great-Value Apples?
Choose from a variety of the UK's favourite Apple specialists. Great deals, low prices, bargain computers and all the latest offers online at the Highstreet Web.
Looking for Great-Value Apples?
Choose from a variety of the UK's favourite Apple specialists. Great deals, low prices, bargain computers and all the latest offers online at Search2Save.
Apple iPod Touch 8GB Black (2nd Generation)
USB 2.0, 8 GB, display
Apple iPod Nano 8GB Silver (4th Generation)
USB 2.0, 8 GB, display
Back to top
Apple Offers
Looking for Great-Value Apples?
Choose from a variety of the UK's favourite Apple specialists. Great deals, low prices, bargain computers and all the latest offers online at the Highstreet Web.
www.thehighstreetweb.com
Looking for Great-Value Apples?
Choose from a variety of the UK's favourite Apple specialists. Great deals, low prices, bargain computers and all the latest offers online at Search2Save.
www.search2save.co.uk
Apple iPod Touch 8GB Black (2nd Generation)
USB 2.0, 8 GB, display
b4u direct
Compare Broadband
Broadband?
Compare 50+ packages
Enter your postcode below:
Powered by:
Top 10 Broadband
Bookstore Top 5
› See more News

Columns

Under Development: Shock of the new

David Robinson attempts to teach some old dogs a new trick or two as he tries to drag one of his customers - and the Inland Revenue - into the 21st century. › See full Opinion
› See more Columns