Apple Airport Base Station Firmware vulnerabilities

CVE-2019-8581 [CRITICAL] CWE-125 CVE-2019-8581: An out-of-bounds read was addressed with improved input validation. This issue is fixed in AirPort B An out-of-bounds read was addressed with improved input validation. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A remote attacker may be able to leak memory.

CVE-2019-8572 [CRITICAL] CWE-476 CVE-2019-8572: A null pointer dereference was addressed with improved input validation. This issue is fixed in AirP A null pointer dereference was addressed with improved input validation. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A remote attacker may be able to cause arbitrary code execution.

CVE-2019-8578 [CRITICAL] CWE-416 CVE-2019-8578: A use after free issue was addressed with improved memory management. This issue is fixed in AirPort A use after free issue was addressed with improved memory management. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A remote attacker may be able to cause arbitrary code execution.

CVE-2019-8588 [HIGH] CWE-476 CVE-2019-8588: A null pointer dereference was addressed with improved input validation. This issue is fixed in AirP A null pointer dereference was addressed with improved input validation. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A remote attacker may be able to cause a system denial of service.

CVE-2019-8580 [HIGH] CVE-2019-8580: Source-routed IPv4 packets were disabled by default. This issue is fixed in AirPort Base Station Fir Source-routed IPv4 packets were disabled by default. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. Source-routed IPv4 packets may be unexpectedly accepted.

CVE-2019-8575 [HIGH] CVE-2019-8575: The issue was addressed with improved data deletion. This issue is fixed in AirPort Base Station Fir The issue was addressed with improved data deletion. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A base station factory reset may not delete all user information.

CVE-2019-7291 [MEDIUM] CVE-2019-7291: A denial of service issue was addressed with improved memory handling. This issue is fixed in AirPor A denial of service issue was addressed with improved memory handling. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. An attacker in a privileged position may be able to perform a denial of service attack.

CVE-2015-7029 [CRITICAL] CWE-119 CVE-2015-7029: Apple AirPort Base Station Firmware before 7.6.7 and 7.7.x before 7.7.7 misparses DNS data, which al Apple AirPort Base Station Firmware before 7.6.7 and 7.7.x before 7.7.7 misparses DNS data, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

CVE-2015-7987 [CRITICAL] CWE-119 CVE-2015-7987: Multiple buffer overflows in mDNSResponder before 625.41.2 allow remote attackers to read or write t Multiple buffer overflows in mDNSResponder before 625.41.2 allow remote attackers to read or write to out-of-bounds memory locations via vectors involving the (1) GetValueForIPv4Addr, (2) GetValueForMACAddr, (3) rfc3110_import, or (4) CopyNSEC3ResourceRecord function.

CVE-2015-7988 [CRITICAL] CVE-2015-7988: The handle_regservice_request function in mDNSResponder before 625.41.2 allows remote attackers to e The handle_regservice_request function in mDNSResponder before 625.41.2 allows remote attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via unspecified vectors.

CVE-2013-5132 [MEDIUM] CWE-189 CVE-2013-5132: Apple AirPort Base Station Firmware before 7.6.4 does not properly handle incorrect frame lengths, w Apple AirPort Base Station Firmware before 7.6.4 does not properly handle incorrect frame lengths, which allows remote attackers to cause a denial of service (device crash) by associating with the access point and then sending a short frame.