漏洞信息详情
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple多个产品资源管理错误漏洞
- CNNVD编号:CNNVD-201012-269
- 危害等级: 低危
- CVE编号: CVE-2009-2189
- 漏洞类型: 资源管理错误
- 发布时间: 2010-12-23
- 威胁类型: 特定网络环境
- 更新时间: 2010-12-23
- 厂 商: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
- 漏洞来源:
漏洞简介
Time Capsule是由CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple自行研发的备份工具,专门为Mac系统的Time Machine设计。
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple AirPort Extreme Base Station是一款小型的无线接入解决方案。
带有固件7.5.2之前版本的CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Time Capsule,AirPort Extreme Base Station,以及AirPort Express Base Station中的ICMPv6实现不能限制(1)Router Advertisement和(2)Neighbor Discovery包的频率。远程攻击者可以通过发送大量包导致拒绝服务(资源消耗以及设备重启)。
漏洞公告
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:
http://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/kb/DL1106
参考网址
来源: support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com
链接:http://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/kb/HT4298
来源: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
名称: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple-SA-2010-12-16-1
链接:http://lists.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/archives/security-announce/2010//Dec/msg00001.HTML
受影响实体
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Airport_express_base_station_firmware:3.84
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Airport_express_base_station_firmware:4.0.9
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Airport_express_base_station_firmware:7.3.2
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Airport_express_base_station_firmware:7.4.1
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Airport_express_base_station_firmware:7.4.2
补丁
- AirPortUtility552
- AirPortSetup
评论