Main Menu

Login



Support Virus.Org

Help support Virus.Org by donating.
Donating allows us to keep this site free and pay the running costs of all our services.
Apple Airport Wireless Vulnerabilities PDF Print E-mail
Written by Editor   
Friday, 22 September 2006 18:31

It seems Apple sneaked out a fix yesterday for several vulnerabilities within the Airport Drivers in OSX. It appears there are three vulnerabilities two affect Intel based Apple systems and one affects PowerPC based systems.
 

The first issue is that a remote attacker on the wireless network can send a specially crafted fame to trigger a stack overflow  in the wireless driver that can allow arbitrary code execution on the targeted system with system privileges. This issue only affects PowerPC based Mac systems.

The next issue again, an attacker can send a specially crafted frames that cause a heap overflow in the wireless driver. This too can allow for arbitrary code execution on the targeted system with system privileges. This issue only affects Intel based Mac systems.

Finally the third issue, again a specially crafted frame sent over the wireless network can cause an integer overflow in the wireless driver's API for 3rd party applications and execute arbitrary code on the system or cause a denial of service. The issue affects Intel based Mac systems with Wireless capabilities.

Apple have released a fix for these issues an it can be downloaded from Apple hereIt seems Apple sneaked out a fix yesterday for a vulnerabilities within the Airport Drivers in OSX. It appears there are three vulnerabilities two affect Intel based Apple systems and one affects PowerPC based systems. or via 'Software Update' in System Preferences. You can find out more about the issues from Apple's advisory here .

Add this page to your favorite Social Bookmarking websites
Digg! Reddit! Del.icio.us! Google! Live! Facebook! Technorati! StumbleUpon! Yahoo!
Last Updated ( Friday, 22 September 2006 18:32 )