Apple Fixes High-Risk Security Flaw in AirPort Routers
Security Update : Yesterday, Apple released new firmware versions for its AirPort router models, which fixed a remote code execution (RCE) flaw tracked as CVE-2015-7029 and reported to the company last year by security researcher Alexandre Helie.
Apple says that “a remote attacker may be able to cause arbitrary code execution” and take over the device, based on the complexity of their attack code.
CVE-2015-7029 is a memory corruption issue, which Apple says exists in the way the router parses DNS requests. Apple didn’t mention if the problem is affecting inbound or outbound DNS traffic.
Regardless, both exploitation scenarios are trivial since DNS requests are involved in almost every Internet connection set up today.
The attack surface is huge, and an attacker would not have to wait long for a successful compromise.
Sophos security researcher Paul Ducklin read more)