CVE-2009-2822
First published: Mon Apr 05 2010(Updated: )
AirPort Utility before 5.5.1 for Apple AirPort Base Station does not properly distribute MAC address ACLs to network extenders, which allows remote attackers to bypass intended access restrictions via an 802.11 authentication frame.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple Airport Utility | <=5.4.2 | |
| Apple Airport Utility | =5.0 | |
| Apple Airport Utility | =5.3.1 | |
| Apple Airport Utility | =5.3.2 | |
| Apple Airport Utility | =5.4.1 | |
| Apple AirPort Extreme |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.osvdb.org/63420
- http://secunia.com/advisories/39160
- http://www.vupen.com/english/advisories/2010/0778
- http://www.securityfocus.com/bid/39134
- http://lists.apple.com/archives/security-announce/2010//Mar/msg00004.html
- http://securitytracker.com/id?1023801
- http://support.apple.com/kb/HT3958
- https://exchange.xforce.ibmcloud.com/vulnerabilities/57434
Frequently Asked Questions
What is the severity of CVE-2009-2822?
CVE-2009-2822 is classified as a medium severity vulnerability due to its potential to allow unauthorized access to network resources.
How do I fix CVE-2009-2822?
To fix CVE-2009-2822, upgrade AirPort Utility to version 5.5.1 or later.
What versions of AirPort Utility are affected by CVE-2009-2822?
CVE-2009-2822 affects AirPort Utility versions prior to 5.5.1, including versions 5.0, 5.3.1, 5.3.2, and 5.4.1.
Can CVE-2009-2822 be exploited remotely?
Yes, CVE-2009-2822 can be exploited remotely by attackers to bypass access restrictions.
What type of devices does CVE-2009-2822 affect?
CVE-2009-2822 affects the Apple AirPort Utility and its associated AirPort Base Station.
- collector/nvd-historical
- agent/references
- agent/type
- agent/remedy
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/author
- agent/last-modified-date
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/apple
- canonical/apple airport utility
- version/apple airport utility/5.4.2
- version/apple airport utility/5.0
- version/apple airport utility/5.3.1
- version/apple airport utility/5.3.2
- version/apple airport utility/5.4.1
- canonical/apple airport extreme