Multiple vulnerabilities in Apple iTunes

Beschreibung

Multiple critical vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or spoof HTTPS servers. Below is a complete list of vulnerabilities

1. Vectors related to browsing the iTunes Store can be exploited remotely by man-in-the-middle attacks;
2. Improper certificate verification can be exploited remotely by man-in-the-middle attacks.

Ursprüngliche Informationshinweise

• Apple bulletin

CVE Liste

• CVE-2013-0992
  critical
• CVE-2013-0999
  critical
• CVE-2013-0993
  critical
• CVE-2013-1014
  critical
• CVE-2013-1006
  critical
• CVE-2013-0991
  critical
• CVE-2013-1001
  critical
• CVE-2013-0997
  critical
• CVE-2013-1003
  critical
• CVE-2013-1008
  critical
• CVE-2013-0996
  critical
• CVE-2013-0998
  critical
• CVE-2013-0995
  critical
• CVE-2013-1002
  critical
• CVE-2013-0994
  critical
• CVE-2013-1005
  critical
• CVE-2013-1004
  critical
• CVE-2013-1010
  critical
• CVE-2013-1011
  critical
• CVE-2013-1007
  critical
• CVE-2013-1000
  critical

Mehr erfahren

Informieren Sie sich über die Statistiken der in Ihrer Region verbreiteten Sicherheitslücken statistics.securelist.com