Apple wi-fi hole exposed

A security researcher has released attack code he claims exploits a new security hole in wireless software from Apple.

The vulnerability lies in the Apple AirPort driver, according to details on the flaw published by HD Moore, the developer of the Metasploit security tool. It affects only the AirPort driver provided with wireless cards shipped between 1999 and 2003 with PowerBooks and iMacs, the posting said.

To launch an attempt, the hacker would have to be on the same wireless network as a vulnerable Mac. The attack entails trying to trigger a memory corruption flaw by sending a malformed data packet to the computer, according to Moore's advisory. But the process isn't easy, and Moore hasn't yet been able to gain complete control over a vulnerable Mac.

Got two seconds?

Make your voice heard - take our latest poll.

Moore said in an email interview: "The vulnerability itself only affects older hardware and is going to be difficult to turn into a remote code execution exploit but it's definitely possible, just a matter of time and motivation. The current proof-of-concept triggers a fatal kernel panic and forces the user to power cycle their machine."

Apple is investigating the flaw, according to a spokeswoman for the Mac maker. "This issue affects a small percentage of previous generation AirPort-enabled Macs and does not affect currently shipping or AirPort Extreme enabled Macs," she said.

Moore's proof-of-concept exploit has been added to Metasploit Framework 3.0. This latest version of the security tool, popular with both security professionals and miscreants, has the ability to probe for vulnerabilities in wireless software.

Joris Evers writes for CNET News.com