Results 1 to 2 of 2

Thread: Apple Fixes High-Risk Security Flaw in AirPort Routers

  1. #1
    Administrator & Security Team Starbuck's Avatar
    Join Date
    Feb 2010
    Location
    Midlands, UK
    Posts
    4,359

    PC Experience:
    Very Experienced


    Operating System:
    Win7 Pro / Win8.1 Pro / Win 10 Pro / Linux Mint (Sonya)

    Default Apple Fixes High-Risk Security Flaw in AirPort Routers

    Apple fixes memory issue that led to RCE in AirPort routers



    Yesterday, Apple released new firmware versions for its AirPort router models, which fixed a remote code execution (RCE) flaw tracked as CVE-2015-7029 and reported to the company last year by security researcher Alexandre Helie.

    Apple says that "a remote attacker may be able to cause arbitrary code execution" and take over the device, based on the complexity of their attack code.

    CVE-2015-7029 is a memory corruption issue, which Apple says exists in the way the router p****s DNS requests.
    Apple didn't mention if the problem is affecting inbound or outbound DNS traffic.

    Regardless, both exploitation scenarios are trivial since DNS requests are involved in almost every Internet connection set up today.

    The attack surface is huge, and an attacker would not have to wait long for a successful compromise.

    Sophos security researcher Paul Ducklin says he believes the problem manifests when "feeding malformed replies to an AirPort that makes outbound DNS requests on behalf of the devices on its internal network," because "most routers are set up to work this way." If true, compromising an AirPort device would be a trivial affair.

    Apple said it fixed the memory corruption issue by adding better memory bounds checking to prevent code from executing in the wrong parts of the router's memory.
    CVE-2015-7029 was fixed in the AirPort base station firmware version 7.7.7.
    The firmware is available for download via Apple's website.


    Source:
    http://news.softpedia.com/news/apple...s-505489.shtml
    Member of:
    UNITE

  2. #2
    Banned FPCH Member
    Join Date
    Aug 2016
    Posts
    1

    PC Experience:
    Very Experienced


    Operating System:
    Windows Vista - Ultimate

    Default

    Quote Originally Posted by Starbuck View Post
    Apple fixes memory issue that led to RCE in AirPort routers



    Yesterday, Apple released new firmware versions for its AirPort router models, which fixed a remote code execution (RCE) flaw tracked as CVE-2015-7029 and reported to the company last year by security researcher Alexandre Helie.

    Apple says that "a remote attacker may be able to cause arbitrary code execution" and take over the device, based on the complexity of their attack code.

    CVE-2015-7029 is a memory corruption issue, which Apple says exists in the way the router p****s DNS requests.
    Apple didn't mention if the problem is affecting inbound or outbound DNS traffic.

    Regardless, both exploitation scenarios are trivial since DNS requests are involved in almost every Internet connection set up today.

    The attack surface is huge, and an attacker would not have to wait long for a successful compromise.

    Sophos security researcher Paul Ducklin says he believes the problem manifests when "feeding malformed replies to an AirPort that makes outbound DNS requests on behalf of the devices on its internal network," because "most routers are set up to work this way." If true, compromising an AirPort device would be a trivial affair.

    Apple said it fixed the memory corruption issue by adding better memory bounds checking to prevent code from executing in the wrong parts of the router's memory.
    CVE-2015-7029 was fixed in the AirPort base station firmware version 7.7.7.
    The firmware is available for download via Apple's website.


    Source:
    http://news.softpedia.com/news/apple...s-505489.shtml
    Good news i must say, i was using PureVPN android app for this purpose because it offers great support for a diverse range of VPN routers including DDWRT, Tomato, Asus, Belkin, TP-Link, etc. Now apple fixed this thing its a great news i must say.

Similar Threads

  1. Flaw-ridden bloatware puts nearly every Lenovo PC at risk from hackers
    By Starbuck in forum Security Warnings and Alerts
    Replies: 0
    Last Post: 06-05-2016, 10:22 PM
  2. Linux expert Matthew Garrett: Ubuntu 16.04's new Snap format is a security risk
    By Starbuck in forum Other Operating Systems: Mac OS X, Linux, Etc.
    Replies: 0
    Last Post: 22-04-2016, 06:47 PM
  3. Replies: 0
    Last Post: 16-11-2015, 04:44 PM
  4. New version of Quick Time fixes flaw.
    By Plastic Nev in forum Computing News
    Replies: 0
    Last Post: 14-08-2010, 09:57 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •