CVE-2007-1338

Currently unrated

Key Information:

Vendor: Apple
Status: Airport Extreme
Vendor: CVE Published:; 8 March 2007

Summary

The default configuration of the AirPort utility in Apple AirPort Extreme creates an IPv6 tunnel but does not enable the "Block incoming IPv6 connections" setting, which might allow remote attackers to bypass intended access restrictions by establishing IPv6 sessions that would have been rejected over IPv4.

References

http://secunia.com/advisories/24830

third-party-advisoryx_refsource_SECUNIA

http://arstechnica.com/journals/apple.ars/2007/2/14/7063

x_refsource_MISC

http://www.vupen.com/english/advisories/2007/1308

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Mar 8, 2007
Vulnerability Reserved
Mar 7, 2007