← Back

CVE-2009-2189

nvd nist
Published: Dec 22, 2010Modified: Apr 29, 2026

JSON object

Loading...
6.1
Vector
AV:A/AC:L/Au:N/C:N/I:N/A:C
Exploitability: 6.5 / Impact: 6.9
Source: NVD

Description

The ICMPv6 implementation on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 does not limit the rate of (1) Router Advertisement and (2) Neighbor Discovery packets, which allows remote attackers to cause a denial of service (resource consumption and device restart) by sending many packets.

Affected (12)

Apple
5 products
Airport Express Base Station Firmware
Airport Extreme Base Station Firmware
Airport Express
Airport Extreme
Time Capsule
Configuration A
12 vulnerable
Vulnerable SoftwareAffected Versions
Apple
Airport Express Base Station Firmware
Up to 7.4.2
Airport Express Base Station Firmware
Version 3.84
Airport Express Base Station Firmware
Version 4.0.9
Airport Express Base Station Firmware
Version 6.1
Airport Express Base Station Firmware
Version 6.3
Airport Express Base Station Firmware
Version 7.3.2
Airport Express Base Station Firmware
Version 7.4.1
Apple
Airport Extreme Base Station Firmware
Version 5.5
Airport Extreme Base Station Firmware
Version 5.7
Airport Express
All versions
Airport Extreme
All versions
Time Capsule
All versions

Related CWEs

CWE-399
CWE-399

References (6)

Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.