Apple fixed a serious vulnerability in its AirPort routers
Apple released security update APPLE-SA-2016-06-20-1 AirPort Base Station Firmware Update 7.6.7 and
7.7.7 within which the company fixed a dangerous vulnerability in the firmware of its routers (Wi-Fi base stations) AirPort. Apple AirPort Express, Extreme devices, Time Capsule 802.11n base stations, AirPort Extreme and Time Capsule 802.11ac devices are subject to updating. The update installs the following software versions on them: 7.6.7 or 7.7.7.
The only RCE vulnerability identified with CVE-2015-7029 is fixed. Using this vulnerability, attackers can remotely execute code in a router by sending a specially crafted DNS query to it. The exploitation of the vulnerability is possible if the router itself is configured to process DNS requests from outside, or the attacker can fake a DNS response to a request that the router periodically sends on behalf of devices from the network it serves.
')
The vulnerability lies in the wrong work with memory (memory corruption) of the part of the firmware code, which deals with the analysis of the DNS request header.
Earlier we wrote about closing a similar dangerous vulnerability with the identifier CVE-2016-3227 in the MS Windows Server 2012 DNS service component. The attackers could also use it to remotely execute malicious code on the server, and with high Local System privileges in the system, since The service operates in the context of an account with high authority. The exploitation of the vulnerability was also possible using a specially crafted DNS query that is sent to the server.
To upgrade the firmware of the router to versions 7.6.7 and 7.7.7, use the AirPort Utility 6.3.1 or later on Apple OS X. Another upgrade option involves using AirPort Utility 1.3.1 or later on iOS.
AirPort Utility for OS X can be downloaded from the Apple software download page . In the case of iOS, you should use the program from the App Store.
be secure.
7.7.7 within which the company fixed a dangerous vulnerability in the firmware of its routers (Wi-Fi base stations) AirPort. Apple AirPort Express, Extreme devices, Time Capsule 802.11n base stations, AirPort Extreme and Time Capsule 802.11ac devices are subject to updating. The update installs the following software versions on them: 7.6.7 or 7.7.7.
The only RCE vulnerability identified with CVE-2015-7029 is fixed. Using this vulnerability, attackers can remotely execute code in a router by sending a specially crafted DNS query to it. The exploitation of the vulnerability is possible if the router itself is configured to process DNS requests from outside, or the attacker can fake a DNS response to a request that the router periodically sends on behalf of devices from the network it serves.
')
The vulnerability lies in the wrong work with memory (memory corruption) of the part of the firmware code, which deals with the analysis of the DNS request header.
Impact: A remote attacker
Description: A memory corruption issue existed in DNS data parsing. This issue was addressed through improved bounds checking.
Earlier we wrote about closing a similar dangerous vulnerability with the identifier CVE-2016-3227 in the MS Windows Server 2012 DNS service component. The attackers could also use it to remotely execute malicious code on the server, and with high Local System privileges in the system, since The service operates in the context of an account with high authority. The exploitation of the vulnerability was also possible using a specially crafted DNS query that is sent to the server.
To upgrade the firmware of the router to versions 7.6.7 and 7.7.7, use the AirPort Utility 6.3.1 or later on Apple OS X. Another upgrade option involves using AirPort Utility 1.3.1 or later on iOS.
AirPort Utility for OS X can be downloaded from the Apple software download page . In the case of iOS, you should use the program from the App Store.
be secure.
Source: https://habr.com/ru/post/303876/
All Articles