Apple stabs Heartbleed bug in AirPort Extreme, Time Capsule gear

  • 24 April 2014
  • 2 replies
  • 2 views

Userlevel 7

Don't worry, everything else is still safe ... we think

By Shaun Nichols, 24 Apr 2014  Apple has posted a security update to address instances of the Heartbleed security vulnerability in its AirPort router and file back-up gadgets.
 
The company said that a firmware update for the AirPort Extreme and AirPort Time Capsule home network appliances would address the infamous CVE-2014-0160 OpenSSL security vulnerability, better known by the nickname Heartbleed.
 The flaw, in which an attacker can extract in-memory data from a targeted server, has sent shockwaves through the security community for both its severity and prevalence. Some experts believe that fully resolving the flaw will take months.
 
In Apple's case, the vulnerability lies in OpenSSL library used by the AirPort Extreme and AirPort Time Capsule 802.11ac models. An attacker who gains network access privileges could potentially use the flaw to gain access to data from the Back to My Mac remote access tool or the Send Diagnostics tool. Older versions of AirPort and Time Capsule are not subject to the flaw.
 
 
 
Full Article
 
Still glad I am not an Apple addict...phew!

2 replies

Userlevel 7
Badge +62
Oh dear.. @ you should try the Apple or Mac...I'm quite the fan I just need to protect my Apples..;)
Userlevel 7
Hi SSherjj
 
I'll be using Linux long before I go anywhere near an Apple or a Mac. ;)
 
It is a personal thing and I have no issue with people who do use them/are fans of them (indeed my Wife is an iDevotee)...give me Windows any day.
 
Regards
 
 
Baldrick
 
 

Reply