Security fix released for Apple AirPort Extreme Base Station

Update fixes Apple Filing Protocol vulnerability that could let a maliciously crafted AFP request cause file sharing to become unresponsive.

by Robert Vamosi

March 20, 2008 9:23 AM PDT

Apple released on Wednesday a security update for the AirPort Extreme Base Station with 802.11n.

The Firmware 7.3.1 update addresses the Apple Filing Protocol (AFP) vulnerability detailed in CVE-2008-1012.

Apple said there is an input validation issue in the way AirPort Extreme Base Station validates AFP requests. A maliciously crafted AFP request may cause file sharing to become unresponsive. This issue does not affect Time Capsule or AirPort Express.

The update for the Fast Ethernet version of Airport Extreme and the Gigabit Ethernet editions is available on from Apple support. Earlier this week Apple released an update for its Safari browser, along with an ominbus security update for Mac OS X.

Apple credits Alex deVries for reporting the AFP vulnerability.

CNET Update

Twitter attempts to beef up security

Twitter lets users add a second layer of password protection, Jennifer Lopez has a new mobile brand, and Nextdoor brings text alerts to the neighborhood.

Play Video