Slashdot Mirror

← Back to Stories (view on slashdot.org)

Security Vulnerability in Apple's AirPort Base Station

Posted by pudge on from the newsflash-wireless-is-insecure dept.

inditek writes "At Stake has issued a security warning today about a vulnerability in Apple's AirPort Base Station: 'Apple's AirPort device is a wireless access point, providing 802.11 services to network clients. Authentication credentials are obfuscated, and then sent over the network. If an AirPort is administered over the Ethernet interface or via an insecure (non WEP) wireless connection, an attacker that can sniff the network can obtain administrative access to the AirPort.'"

5 of 60 comments (clear)

  1. Re:Not really a big problem. by Electrum · · Score: 3, Insightful

    Besides if you're using a switch instead of a stupid hub they can't sniff you anyway.

    You'd like to think that, wouldn't you? arpspoof from the dsniff package lets you sniff on a switched network. So does ettercap.

  2. duh by trouser · · Score: 5, Insightful

    I think what they're saying is that the Airport base station, which is an 802.11 base station, has exactly the same security vulnerability as an 802.11 base station.

    This is very old news.

    --
    Now wash your hands.
    1. Re:duh by Lizard_King · · Score: 3, Insightful

      uhhh... not exactly. If you read the article, you'll notice that they've discovered the obfuscation technique that the Airport uses to scramble it's administrative passwords. Quite interesting if you're keeping tabs on the different techniques between access points.

      True, you'll actually have to read the article to discover what the "News" is here, but it's a practice that I recommend.

      --
      "My mother never saw the irony in calling me a son-of-a-bitch." - Jack Nicholson
  3. Re:Not really a big problem. by skinfitz · · Score: 3, Insightful

    However, I stand by the fact that airport is intended for home use where the exploit isn't much of a risk anyway.

    Really? A device designed to support 50 computers simultaneously designed only for home use. You better tell that to all of the business and academic users quick - or are they all using the "other" version of the Airport?

  4. Re:Er.. since when has WEP been "secure"? by Stigmata669 · · Score: 4, Insightful
    There is a common misconception that WEP is "quickly and easily broken" because there are several open source projects that work on a weakness in the RC-4 key scheduling.

    What many people don't realize is that these programs require the harvest of between 2000 and 10000 'weak' packets which can take as little as 20 hours and as long as a week of constant monitoring to collect. If you don't believe me, go read the FAQ of any WEP cracking program. These programs are only proof of concept models, and lack a practical implementation. I tried KisMAC against my own ap and failed to produce any results.

    WEP is perfectly secure for a standard network, and anyone who is willing to spend 100 hours standing in my driveway just for access to a network on which everything else is passworded is simply insane.

    Anyone who acts like WEP is worthless is simply misinformed.

    --
    Yawn.