HomePentest-Tools.com Logo

Apple iTunes Multiple Vulnerabilities - June13 (Windows) CVE-2013-1014CVE-2013-1011CVE-2013-1010CVE-2013-1008CVE-2013-1007CVE-2013-1006CVE-2013-1005CVE-2013-1004CVE-2013-1003CVE-2013-1002CVE-2013-1001CVE-2013-1000CVE-2013-0999CVE-2013-0998CVE-2013-0997CVE-2013-0996CVE-2013-0995CVE-2013-0994CVE-2013-0993CVE-2013-0992CVE-2013-0991

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

Apple iTunes is prone to multiple vulnerabilities.

Risk description

Multiple flaws due to - Improper validation of SSL certificates. - Integer overflow error within the string.replace() method. - Some vulnerabilities are due to a bundled vulnerable version of WebKit. - Array indexing error when handling JSArray objects. - Boundary error within the string.concat() method. Successful exploitation will allow attackers to execute arbitrary code, conduct Man-in-the-Middle (MitM) attack or cause heap-based buffer overflow.

Recommendation

Upgrade to version 11.0.3 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
May 20, 2013
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available