CVE-2009-2189

Currently unrated

Key Information:

Vendor: Apple
Status: Airport Express Base Station Firmware; Airport Extreme Base Station Firmware; Airport Express; Airport Extreme
Vendor: CVE Published:; 22 December 2010

Summary

The ICMPv6 implementation on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 does not limit the rate of (1) Router Advertisement and (2) Neighbor Discovery packets, which allows remote attackers to cause a denial of service (resource consumption and device restart) by sending many packets.

References

http://lists.apple.com/archives/security-announce/2010//D...

vendor-advisoryx_refsource_APPLE

http://support.apple.com/kb/HT4298

x_refsource_CONFIRM

http://www.securitytracker.com/id?1024907

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Dec 22, 2010
Vulnerability Reserved
Jun 24, 2009