Description
Multiple serious vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code and obtain sensitive information.
Below is a complete list of vulnerabilities:
- An unspecified vulnerability in APNs Server can be exploited remotely to obtain sensitive information;
- A memory corruption vulnerability can be exploited to execute arbitrary code;
- An integer overflow vulnerability in ICU can be exploited remotely to obtain sensitive information;
- Multiple memory corruption vulnerabilities in WebKit can be exploited remotely to execute arbitrary code.
Original advisories
Exploitation
Public exploits exist for this vulnerability.
Related products
CVE list
- CVE-2017-15422 high
- CVE-2017-7165 critical
- CVE-2017-13870 critical
- CVE-2017-7172 critical
- CVE-2017-13884 critical
- CVE-2017-13885 critical
- CVE-2017-7156 critical
- CVE-2017-7157 critical
- CVE-2017-13856 critical
- CVE-2017-7160 critical
- CVE-2017-13864 high
- CVE-2017-7153 high
- CVE-2017-13866 critical
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!