Lucene search

[email protected]CVE-2010-1804

HistoryDec 22, 2010 - 3:00 a.m.

CVE-2010-1804

2010-12-2203:00:01

[email protected]

web.nvd.nist.gov

cve-2010-1804

unspecified vulnerability

apple

time capsule

airport extreme

base station

denial of service

networking outage

dhcp reply

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

6.4 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.2%

JSON

Unspecified vulnerability in the network bridge functionality on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 allows remote attackers to cause a denial of service (networking outage) via a crafted DHCP reply.

Affected configurations

NVD

Node

appleairport_express_base_station_firmwareRange≤7.4.2

appleairport_express_base_station_firmwareMatch3.84

appleairport_express_base_station_firmwareMatch4.0.9

appleairport_express_base_station_firmwareMatch6.1

appleairport_express_base_station_firmwareMatch6.3

appleairport_express_base_station_firmwareMatch7.3.2

appleairport_express_base_station_firmwareMatch7.4.1

appleairport_extreme_base_station_firmwareMatch5.5

appleairport_extreme_base_station_firmwareMatch5.7

AND

appleairport_express

appleairport_extreme

appletime_capsule

CPENameOperatorVersion
apple:airport_express_base_station_firmwareapple airport express base station firmwarele7.4.2
apple:airport_express_base_station_firmwareapple airport express base station firmwareeq3.84
apple:airport_express_base_station_firmwareapple airport express base station firmwareeq4.0.9
apple:airport_express_base_station_firmwareapple airport express base station firmwareeq6.1
apple:airport_express_base_station_firmwareapple airport express base station firmwareeq6.3
apple:airport_express_base_station_firmwareapple airport express base station firmwareeq7.3.2
apple:airport_express_base_station_firmwareapple airport express base station firmwareeq7.4.1
apple:airport_extreme_base_station_firmwareapple airport extreme base station firmwareeq5.5
apple:airport_extreme_base_station_firmwareapple airport extreme base station firmwareeq5.7
apple:airport_expressapple airport expresseq*

CPE	Name	Operator	Version
apple:airport_express_base_station_firmware	apple airport express base station firmware	le	7.4.2
apple:airport_express_base_station_firmware	apple airport express base station firmware	eq	3.84
apple:airport_express_base_station_firmware	apple airport express base station firmware	eq	4.0.9
apple:airport_express_base_station_firmware	apple airport express base station firmware	eq	6.1
apple:airport_express_base_station_firmware	apple airport express base station firmware	eq	6.3
apple:airport_express_base_station_firmware	apple airport express base station firmware	eq	7.3.2
apple:airport_express_base_station_firmware	apple airport express base station firmware	eq	7.4.1
apple:airport_extreme_base_station_firmware	apple airport extreme base station firmware	eq	5.5
apple:airport_extreme_base_station_firmware	apple airport extreme base station firmware	eq	5.7
apple:airport_express	apple airport express	eq	*

Rows per page:

1-10 of 121

References

lists.apple.com/archives/security-announce/2010//Dec/msg00001.html

support.apple.com/kb/HT4298

www.securitytracker.com/id?1024907

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

6.4 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.2%

JSON

Related for CVE-2010-1804

nvd1 cvelist1 prion1 nessus1