Apple released updates late Monday for two vulnerabilities in its wireless network that may allow disclosure of private information.
One update corrects default configurations that allow incoming IPv6 (the new version of IP with more address space) connections, which could lead to the exposure of network services on hosts connected through the AirPort firmware, Apple said. Network services include authentication servers and email.
The other update adds additional access-validation capabilities on AirPort Disk requests, according to Apple. Before the fix, a feature let users on the local network see file names on a password-protected disk.
Airport Disk, part of Airport Extreme Base Station with 802.11n, permits file-sharing from a USB stick, Apple said.
Click here to email reporter Dan Kaplan.
Looking for a new job? SCMagazine.com has the latest IT security employment opportunities. Click here for our jobs page.