Apple released eight updates to address vulnerabilities in AirPort Express, AirPort Extreme, and AirPort Time Capsule wireless routers with 802.11n that could allow a remote attacker to take control of an affected system, according to a June 20 security update.
One vulnerability could allow a remote attacker to leak memory due to an out-of-bounds read that was addressed with improved input validation. Another flaw allowed a remote attacker to cause a system denial of service due to an issue that was addressed with improved validation.
As usual, Apple doesn’t discuss or confirm security issues until an investigation has occurred and patches or releases are available. Researchers Lucio Albornoz, Vince Cali, Maxime Villard and Joshua Stein were responsible for finding the bugs.