13 matches found
EUVD-2010-0987
Malware in sbrugna...
EUVD-2010-1824
Malware in sbrugna...
EUVD-2005-3711
Malware in sbrugna...
EUVD-2005-0290
Malware in sbrugna...
Command injection
The Application-Level Gateway ALG on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 modifies PORT commands in incoming FTP traffic, which allows remote attackers to use the device's IP address for arbitrary intranet TCP traffic by...
CVE-2009-2189
The ICMPv6 implementation on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 does not limit the rate of 1 Router Advertisement and 2 Neighbor Discovery packets, which allows remote attackers to cause a denial of service resource...
CVE-2009-2189
The CVE-2009-2189 affects Apple Time Capsule , AirPort Extreme Base Station , and AirPort Express Base Station with firmware before 7.5.2. The ICMPv6 implementation does not limit the rate of (1) Router Advertisement and (2) Neighbor Discovery packets, enabling a remote attacker on the same netwo...
CVE-2010-0962
The CVE-2010-0962 case concerns the FTP proxy server in Apple AirPort Express, AirPort Extreme, and Time Capsule firmware 7.5. The root cause is that the FTP proxy does not restrict the IP address and port specified in a PORT command, allowing a client to trigger forwarding to an intranet FTP ser...
CVE-2005-3714
The CVE-2005-3714 issue affects Apple AirPort Express 6.x prior to Firmware Update 6.3 and AirPort Extreme 5.x prior to Firmware Update 5.7. A remote attacker can trigger a denial of service by sending specially crafted packets, causing the AirPort base station’s network interface to become unres...
CVE-2005-3714
The network interface for Apple AirPort Express 6.x before Firmware Update 6.3, and AirPort Extreme 5.x before Firmware Update 5.7, allows remote attackers to cause a denial of service unresponsive interface via malformed packets...
CVE-2005-0289
Apple AirPort Express prior to 6.1.1 and Extreme prior to 5.5.1, configured as a Wireless Data Service WDS, allows remote attackers to cause a denial of service device freeze by connecting to UDP port 161 and before link-state change occurs...
CVE-2005-0289
Apple AirPort Express prior to 6.1.1 and Extreme prior to 5.5.1, configured as a Wireless Data Service WDS, allows remote attackers to cause a denial of service device freeze by connecting to UDP port 161 and before link-state change occurs...
CVE-2005-0289
Apple AirPort Express (pre-6.1.1) and Extreme (pre-5.5.1) devices configured as Wireless Data Service (WDS) are susceptible to a denial-of-service when a remote actor connects to UDP port 161 and before a link-state change occurs. The CVE-2005-0289 entry notes the issue as a device freeze and ide...