CVE-2013-5132

Published Sep 8, 2013

Last updated 11 years ago

Overview

Description: Apple AirPort Base Station Firmware before 7.6.4 does not properly handle incorrect frame lengths, which allows remote attackers to cause a denial of service (device crash) by associating with the access point and then sending a short frame.
Source: product-security@apple.com
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 5.4
Impact score: 6.9
Exploitability score: 4.9
Vector string: AV:N/AC:H/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-189

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:apple:airport_base_station_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B61CCE7-3F91-40C1-8A73-DAE66E1EAE77",
            "versionEndIncluding": "7.6.3"
          },
          {
            "criteria": "cpe:2.3:o:apple:airport_base_station_firmware:7.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C67621AD-92F2-4F99-AE42-32D59E4A3BC0"
          },
          {
            "criteria": "cpe:2.3:o:apple:airport_base_station_firmware:7.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2C1082C5-F10D-4421-A2F2-63A96A238F33"
          },
          {
            "criteria": "cpe:2.3:o:apple:airport_base_station_firmware:7.4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CB49EED-203A-444F-8D2A-4573AA82F54D"
          },
          {
            "criteria": "cpe:2.3:o:apple:airport_base_station_firmware:7.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "49E19246-48AB-462D-8B7F-A76E9FCC8BEB"
          },
          {
            "criteria": "cpe:2.3:o:apple:airport_base_station_firmware:7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6217CBB2-6C57-4F61-A43C-EAA57EFE3D61"
          },
          {
            "criteria": "cpe:2.3:o:apple:airport_base_station_firmware:7.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "562FAF48-BB1F-4E22-B7CC-7B67EE59112A"
          },
          {
            "criteria": "cpe:2.3:o:apple:airport_base_station_firmware:7.6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F1034E8-FB4A-4763-90D7-C03F4C8E6D2D"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References