On The Insider: Cougar Town Production Postponed
BNET Business Network:
BNET
TechRepublic
ZDNet

June 20th, 2007

Now showing: Apple TV security flaw

Posted by Ryan Naraine @ 9:06 am

Categories: Apple, Botnets, Browsers, Cisco, Data theft, Exploit code, Hackers, Metasploit, Patch Watch, Pen testing, Responsible disclosure, Viruses and Worms, Vulnerability research

Tags: Security, Apple Inc., TV, Apple TV, Ryan Naraine

Apple TV has a remotely exploitable buffer overflow that could allow code execution attacks.

Apple TVThe vulnerability, reported by Juniper Networks researcher Mike Lynn, has been fixed with today’s release of Apple TV 1.1, according to an advisory from Cupertino.

This is the same “critical” mDNSResponder vulnerability fixed in last month’s mega-patch from Apple. Exploit code for this flaw, which also affects the Bonjour networking service, has been released by a private security research outfit.

[ SEE: Bonjour Apple, connect to this Mac OS X exploit ]

Apple’s description of the flaw and potential attack scenario:

A buffer overflow vulnerability exists in the UPnP IGD (Internet Gateway Device Standardized Device Control Protocol) code used to create Port Mappings on home NAT gateways in the Apple TV implementation. By sending a maliciously crafted packet, a remote attacker can trigger the overflow which may lead to an unexpected application termination or arbitrary code execution.

According to the advisory, the Apple TV device will automatically check for, download, verify and apply the update.

This process may take up to a week depending on the day that the Apple TV device checks for updates. Alternatively, you may manually update your Apple TV using the TV interface by selecting Settings > Update Software.

Ryan NaraineRyan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.


Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

  • Talkback
  • Most Recent of 19 Talkback(s)
Ah, the Apple crowd and their "security by denial":
I wish I were that blind to believe all the crap that Apple and Jobs (perfect name for someone who regularly "jobs" his users) puts out. Where does it say this flaw ws found only the day before it wa... (Read the rest)
Posted by: Confused by religion Posted on: 06/25/07 You are currently: a Guest | | Terms of Use
Here's a FAR MORE IMPORTANT security flaw  j.m.galvin | 06/20/07
Three guesses  frgough | 06/21/07
Anything with a hard drive can be hacked .  Intellihence | 06/20/07
Er, It's fixed...  john@... | 06/20/07
Most will Update Anyway  john@... | 06/20/07
What bothers you most?  rtk | 06/20/07
Me Bothered?  john@... | 06/21/07
yup, you.  rtk | 06/21/07
and you...  john@... | 06/21/07
This is worth following...  john@... | 06/21/07
Why was it there to begin with?  jshaw4343 | 06/21/07
People Make Mistakes  john@... | 06/21/07
missing the point.  rtk | 06/21/07
That's because Microsoft's fixes don't come out the following day .  Intellihence | 06/22/07
HAHAHA!!!  NonZealot | 06/20/07
Stick with...  SquishyParts | 06/20/07
Get real  fde101 | 06/21/07
This isn't as bad as when all the X-box account holders were hacked  Intellihence | 06/22/07
Ah, the Apple crowd and their "security by denial":  Confused by religion | 06/25/07

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement

Recent Entries

advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

Enterprise Applications

  • Check out some of the easiest and most powerful ways to boost productivity while saving money on your application infrastructure. See ZDNet's comprehensive Enterprise Application resource center, now!
  • New Online Dashboard
  • Read about top issues IT decision-makers face every day, plus get cost effective solutions to real life IT problems. Oracle Topline