CVE-2013-5132

Apple AirPort Base Station Firmware before 7.6.4 does not properly handle incorrect frame lengths, which allows remote attackers to cause a denial of service (device crash) by associating with the access point and then sending a short frame.

Published: Sep 8, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-5132
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.4
AV:N/AC:H/Au:N/C:N/I:N/A:C

CWEs:

CWE-189

Affected Software
References

Software	From	Fixed in
apple / airport_base_station_firmware	7.4.1	7.4.1.x
apple / airport_base_station_firmware	-	7.6.3.x
apple / airport_base_station_firmware	7.6.2	7.6.2.x
apple / airport_base_station_firmware	7.6.1	7.6.1.x
apple / airport_base_station_firmware	7.3.2	7.3.2.x
apple / airport_base_station_firmware	7.5.2	7.5.2.x
apple / airport_base_station_firmware	7.4.2	7.4.2.x
apple / airport_base_station_firmware	7.6	7.6.x

http://lists.apple.com/archives/security-announce/2013/Sep/msg00000.html
http://support.apple.com/kb/HT5920

Vulnerability Database

290,020

CVE-2013-5132